TAILIEUCHUNG - Securing Linux step-by-step

Several other mail transfer agents are available to replace sendmail. Two popular aternatives are Qmail () by David Bernstein, and Postfix () by Wietse Venema. Both of these MTAs were designed and written from the ground up with security and performance in mind. It is beyond the scope of this guide to give details on installing and configuring either of these alternatives, but a wealth of information is available on the Internet. | Securing Server Network Configurations Step . Install an alternative MTA Several other mail transfer agents are available to replace sendmail. Two popular aternatives are Qmail by David Bernstein and Postfix by Wietse Venema. Both of these MTAs were designed and written from the ground up with security and performance in mind. It is beyond the scope of this guide to give details on installing and configuring either of these alternatives but a wealth of information is available on the Internet. Step . Secure the POP and IMAP daemons For mail servers that collect all incoming mail for an organization a common means to deliver the mail to clients is for them to retrieve the mail using the Post Office Protocol POP or the Internet Message Access Protocol IMAP . POP is the older and simpler of the two protocols providing basic commands for authentication retrieval and deletion of mail messages from the mail server. IMAP is more flexible and supports creating deleting and renaming mail folders mailboxes searching selective retrieval of message attributes and more. Step . Get the latest version of POP and IMAP daemons Unfortunately many POP and IMAP daemon implementations have been plagued with vulnerabilities that lead to remote root compromises of mail servers on many platforms. There are several well-known exploit programs available for cracking vulnerable Linux POP and IMAP daemons. Hopefully most of the problems have been found and fixed but it is very important to have the absolute latest version of the daemon program installed on the server. Step . Control access to POP and IMAP with TCP wrappers POP IMAP is traditionally run out of inetd so access control through TCP wrappers is easy and very important. Limit access to only those hosts that have a legitimate need for the service. For a mail hub that holds mail for the entire domain and network and delivers it to clients with POP version 3 or

• An ninh - Bảo mật
• information technology
• curriculum
• computer security
• Linux Security
• data security
• computer engineering
• Lecture Information technology project management
• Project management
• Information technology project management
• Information technology project
• Information technology context
• Agile project management
• Professional practices in information technology
• Business data
• Computer technology
• World Wide Web
• Information systems
• Ethical decisions
• Data protection
• Professional ethics
• Integrating information
• Communications technologies
• Educational technology
• Information technology education
• Distance learning technology education
• Communications technology education
• Teaching with technology
• Learning with technology
• Information technology certification
• Information Security
• Lecture Using information technology
• Mobile world
• Big data
• Statistical information
• Legal implications
• Information technology for managers
• Information technology results
• Strategic planning
• Business process
• English reading skill
• English for Information Technology
• College of Information and Communication Technology
• Thai Nguyen University
• The selected sophomore students
• IT Strategic Planning
• Enterprise Architecture TOGAF framework
• development of information technology
• use of information technology
• information technology services
• Business owners’ perception of the information technology process adoption
• Medium scale manufacturing companies in Indonesia
• Medium scale manufacturing companies
• Finding information technology workers
• Information technology adoption in Indonesia
• Project management statistics
• Project sponsor
• Project management process
• Planning processes
• Strategic planning process
• Project scope management
• Project time management
• Project cost management
• Project quality management
• Quality management planning
• Project human resource management
• Emotional intelligence
• Project communications management
• Communications management plan
• Project risk management
• Control risks
• Project procurement management