Premium Essay

Linux Securities to Protect Your Data

In:

Submitted By Cadavissr31
Words 830
Pages 4
Linux Securities to Protect Your Data

Chris Davis
IT302 Linux Administration
April 8, 2012

Linux has been deemed one of the most secure operating systems available to date. So what makes Linux one of the top secure operating systems? That is the question that we will be answering with this paper.
Starting with SELinux which was started by the NSA (National Security Agency) and had additions from several other groups such as Network Associates, Treys, and others.
Released as a set of patches in the beginning SELinux has molded its way into the Linux kernel as of kernel release 2.6. This was needed since in the early stages of SELinux it provided its own security framework which caused issues with GNU/Linux because it put Linux into a single access-control architecture. To correct this situation the Linux kernel inherited a generic framework that separated policy from enforcement.
This created the LSM (Linux Security Framework). LSM provides the way that security models are implemented as loadable kernel modules.
So what actually makes SELinux such an enhanced security system? The ability to contain programs and daemons to just their bare needed access needs. This is all done through access control. MAC (Mandatory Access Control not Media Access Control) which is more secure than its counterpart DAC (Discretionary Access Control). But SELinux even went a step further by adding RBAC (Role Based Access Control). RBAC works with the roles each user and/or groups has assigned to their login. Since a role can represent multiple users, but it also represents the permissions that a set of users can perform, SELinux uses this to control the access levels.
Linux also has several other security features that help make it on the most secure operating systems to date.
Chroot jail is another one of these functions. Chroot is an operation that made its first

Similar Documents

Premium Essay

Operating Systems Comparison and Contrast

...far as their security and memory management. The first operating system we will compare and contrast is Windows Vista and the security features it offers. Windows Vista is an upgrade to Microsoft Windows XP and Windows 2000. When it comes to security and Windows vista, Windows Vista can help protect your PC and the people that use it by providing safety and many security features. One feature includes Bit Locker Drive Encryption. Bit Locker Drive Encryption is a security feature that provides data protection by encrypting all the data that is stored on the Windows Operating System. Windows Vista also has Encrypting File system available which is similar to Bit Locker Drive Encryption except that it is for user level file and folder encryption. Drive Encryption is good if you have two users sharing the same computer. Another security feature for Windows Vista is Parental Controls. Parental Controls are to protect your children and for restricting them to certain areas of your computer. Parental Controls help parents determine which games their children can play or which programs they can use even while they are away. Shadow Copy is also another feature. Shadow Copy creates copies of your files as you work so you can retrieve them in case you accidentally erase them. Shawdow Copy is automatically turned on when using Windows Vista. User Account Control is a great feature because it prevents harmful software from making changes to your computer...

Words: 750 - Pages: 3

Free Essay

Top 10 Reasons

...gives you new capabilities for managing your endpoints—with more flexibility, tighter security and greater ease. You can now manage Windows*, Linux* and Mac* endpoints through a web-based console and know your data is safe with full-disk encryption. ® ® Novell helps you: Manage more devices Balance security and employee productivity without compromising on either Access configuration and inventory, locationaware security and proactive patching through a single unified web console and adaptive agent Give users the ability to access what they need from wherever they are ZENworks 11 SP2 adds significant new capabilities to make your job easier, your users happier and your data more secure. In addition to Windows and Linux management, you can now manage Mac devices using the same web-based console and adaptive agent. Full disk encryption together with integrated endpoint security management makes securing data on your Windows endpoints automatic. And the web-based console makes management a snap from any device, including tablets. These and hundreds of other improvements make upgrading to ZENworks 11 SP2 the right decision. Top 10 Features that Make Managing Your Endpoints Easier, More Secure and More Flexible with Novell ZENworks 11 SP2: 01 02 03 Extend management to Mac OS X. With Novell ZENworks 11 SP2 you can now use ZENworks software deployment, inventory, remote management, patch management and asset management for your Mac OS X 10.5 and higher devices. This means...

Words: 884 - Pages: 4

Premium Essay

Operating System Comparisons

...Operating System Comparisons PRG/355 January 14, 2013 Steven Kernan Operating System Comparisons Table of Contents Introduction 3 Memory Management 3 File Management 4 Security 4 Conclusion 4 Reference 5 Introduction An operating system (OS) is software that manages the hardware and software resources of a computer system. Basically an OS is a set of libraries or functions which programs may use to perform specific tasks relating to interfacing with computer system components (The Computer Technology Documentation Project, n.d.). Advantages and disadvantages exist in every operating system. Reviewed in this paper is a comparison of some of the primary responsibilities of popular operating systems. The review includes Unix/Linux, Mac, and Microsoft Windows operating systems. Memory Management An important function of the OS is to manage the computer systems memory. Programs, processes, and resource do not simply float around in memory haphazardly. Memory is shared among these processes and resources. Accordingly, managed by the OS is an organized structure of locating processes in computer memory locations. The two primary types of memory controlled by an OS are main memory and virtual memory. Main memory is… (need general definition). Virtual (secondary) memory is… (need general definition). Intended memory management requirements include relocation, protection, sharing, logical organization, and physical organization. Processes may...

Words: 1019 - Pages: 5

Premium Essay

Linux Security

...Securing Linux Platforms and Applications Project Project Part 1 Task 1: Outline Security Policy This security policy is essential to the First World Bank Savings and Loan. It is used to break up the security plan not measurable, specific, and testable goals and objectives. This security policy would be used to provide all current and prospective customers online banking services while keeping the First World Saing bank competitive in the financial marketplace. This solution is also an imperative due to an estimated revenue of $100,0000,000 flowing in by virtue of online credit card transactions specific to banking and loan application based services. This security policy will go on to outline the specific regulations and legislation that are in agreement with the statutory compliance criteria. Below is a recommended view of the characteristics and components of the recommended security based policy. Taking up the stake of the performance, cost, and security of maintaining the Linux, and open source infrastructure will be within the premise of the defined roles and responsibilities. Annual cost savings are estimated to amount to $4,000,000 (approx) by virtue of implementation of this solution. The ‘C’-‘I’-‘A’ triad will be a crucial requirement fo the First World Savings Bank and translates to Confidentiality, Integrity and Availability respectively. Confidentiality aspect with reference to First World Savings Bank – Confidentiality refers to the principle that states...

Words: 3404 - Pages: 14

Premium Essay

Packet Filtering Firewall Essay

...modern communication. Computer or data network is a telecommunication network allowing computers to exchange data, files and also allow remote computing, that is, giving authorized users the ability to access information stored on other computers found on the same network. This exchange of data is carried through network links which are established between nodes using either cables or wireless media. Most information in computer networks is carried in packets, thus, increasing the difficulty to manage and secure the network from hazards such as security threats. Undesired packets may easily harm the systems. To counter such infected packets, firewall has been implemented with packet filters which check...

Words: 2254 - Pages: 10

Free Essay

Unix/Linux Versus Mac Versus Windows Pos/355

...UNIX /Linux versus MAC versus Windows Paper POS/355 March 11, 2013 Bhupinder Singh UNIX/Linux versus MAC versus Windows Paper Introduction Today we live in a world where technology is the way to go. Even in this century there are people that are still clueless on the operating system. It is different, exciting when a new and advance system comes out. But some of us are so confused when it comes to the basics of new technology. Operating systems are programs which manages the computer’s hardware. The systems provide a basic for the applications programs between the computer user and its hardware. When looking, there are so many different types of operating systems that are available. The four main operating systems that are used are Windows, Mac, UNIX, and Linux. For every computer there are many different items that make the system a whole. When it comes to the different operating systems there are different features available, even though when you think of computers a person might think security will all be the same but there are difference between each one. As you read more you will understand the security and the difference between a MAC, UNIX/LINUX and Windows systems and how each one works. Access control goal is to protect a resource from unauthorized access while facilitating seamless and legitimate use of such resources. Presently, each day users hold the need to access to those resources through a broad line of devices...

Words: 2503 - Pages: 11

Free Essay

It302 4.1 Research Assignment

...Linux Security Technologies There are many ways to have internet access these days. Coffee shops, libraries, airports and even public buses have free wireless access. With all these free accesses to the World Wide Web, there is also many potential ways for hackers to potentially get your personal information and use it for their gain. There are many ways to combat this situation by using several security measures with Linux programming, which the majority of the software is free. Some of those security technologies are SELinux, TCP Wrappers, IPtables and Chroot Jail to name a few. SELinux is a security enhancement to Linux which allows users and administrators more control over access control. Access can be constrained on such variables as which users and applications can access which resources. Was developed by the NSA in December of 2000. These resources may take the form of files. Standard Linux access controls, such as file modes (-rwxr-xr-x) are modifiable by the user and the applications which the user runs. Conversely, SELinux access controls are determined by a policy loaded on the system which may not be changed by careless users or misbehaving applications. SELinux also adds finer granularity to access controls. Instead of only being able to specify who can read, write or execute a file, for example, SELinux lets you specify who can unlink, append only, move a file and so on. SELinux allows you to specify access to many resources other than files as well, such...

Words: 1350 - Pages: 6

Premium Essay

Nt1330 Unit 3 Assignment 1 Shell Script

...how to backup a file or folder using a tool to accomplish these tasks. The SNTbackup is a shell script backup tool that gives users the option to select to select a file or folder to be backed up. A detail demonstration with screenshots is provided as a visual aid to readers. I used a simple Linux shell script to back-up the home directory of my system. The script uses the tar command to execute this task. SNTback is a simple, effective, fully customizable backup script that protects your folder by creating a duplicate of the specific folder. The duplicate of the selected folder is the place in a location of the user’s preference. Users will find the SNTbackup as a resource which allows folders such as directories to be back-up in no time....

Words: 1666 - Pages: 7

Premium Essay

Cis 206 All Discussions Latest

...how they differ. Which one would you choose and why. CIS 206 Week 1 DQ 2 Hardware Selection Using the Internet, research the task of building your own PC. Discuss the required and optional components. Discuss why you choose one brand over another. CIS 206 Week 2 DQ 1 Operating System Functions Discuss the four functions of the operating system and how Windows and Linux perform those functions. Explain the differences in each operating system and how they interact with the hardware. Discuss such things as polling, memory management, and resource management. CIS 206 Week 2 DQ 2 Applications and Hardware Access Discuss how applications are able to access hardware resources. Explain how an application is able to work with the system memory to complete its task. What role does the operating system play in the interaction? CIS 206 Week 3 DQ 1 Comparing Operating Systems The Windows operating system continues to maintain a higher market share than other operating systems. Why do you think that the Windows operating system has been so successful? Why hasn’t the Mac or Linux operating system been as successful? What future changes can you predict for the Windows operating systems or any other systems CIS 206 Week 3 DQ 2 Comparing Operating System Installation This week’s iLab has you perform the installation of Windows 7 and Ubunto Linux. How does the installation process differ for each operating system? Discuss the pre-installation steps and minimum hardware requirements for...

Words: 784 - Pages: 4

Premium Essay

Linux Security

...Robert Hoffman Linux Research 2.1 Security for computers is one of the most important aspects of a system that has to be in place. For this paper I will be writing about four security features that Linux systems use; these are SELinux, chroot jail, openSSH, and iptables. I will briefly describe what they do to provide security. SELinux (security enhanced Linux) was developed by the NSA, who chose Linux as its operating system to create a more secure operating system. Since the development of SELinux by the NSA most Linux distributions now implement SELinux as a standard. Traditional Linux systems use a security called (DAC) discretionary access control. With this approach users and their objects, i.e., files or processes run by the user have the same access as the user. So if an attacker got hold of an admin account they would have complete control over any files or services that account runs or has access to. SELinux uses (MAC) mandatory access control. With this, services and files are controlled by policies saying what may or may not be done. MAC enforces these security policies that limit what users and programs can do. Security threats coming from user errors, attackers, or software problems are limited by MAC. SELinux has three modes that it can function in: Enforcing- This is the default state where SELinux security policy is enforced, anything not permitted by the security policy can not be done. Permissive-...

Words: 999 - Pages: 4

Premium Essay

Operating System Analysis Paper

...Operating System Analysis Paper Team A: , POS/355 August 25, 2012 Demetrius Fluker University of Phoenix Operating System Analysis Paper When ruminating over which operating system for a home, business, or office computer or network of computers, it is vital to evaluate all areas of the different operating systems options. The key system options to compare and contrast when evaluating Microsoft Windows XP, Microsoft Windows Server 2003, and Linux operating systems are to consider the system requirements, the different editions available, security features, system features, updates and support, user interface, and cost effectiveness. Moreover, the best fit operating system can be determined depended on the individual’s or organization’s needs. Operating System Requirements Windows XP The system requirements for Windows XP Home Edition and Professional Edition are the same. These requirements are a PC with a 233 megahertz or higher (a 300 megahertz + processor speed is recommended), 64 megabytes (MB) of RAM or higher (128 MB is recommended), 1.5 gigabytes (GB) of available hard drive space, a video adapter and monitor that is Super VGA (800x600) or higher-resolution, CD/DVD-ROM drive, keyboard, and mouse/pointing device. The Windows XP Starter Edition has different system requirements. These are 233MHz processor or better, 256 MB of RAM, Super VGA (800x600) video adapter and monitor, CD/DVD-ROM drive, keyboard, mouse/pointing device, DirectX 9 graphics with 32 MB...

Words: 4101 - Pages: 17

Premium Essay

Project Part 1 Task 1: Outline Security Policy Scenario

...Part 1 Task 1: Outline Security Policy Scenario To stay competitive in the financial institution market, the First World Bank Savings and Loan wishes to provide all banking services online to its customers. These services also include the online use of credit cards for loan applications. The organization estimates over $100,000,000 a year in online credit card transactions for loan applications and other banking services. A task team has been formed to study the cost, performance, and security of maintaining a Linux and open source infrastructure. According to rough estimates, annual cost savings in licensing fees alone can be up to $4,000,000. At the same time, the confidentiality, integrity, and availability (CIA) triad perspective needs to be taken into account for infrastructure maintenance. The task team has engaged a network engineer with the network and routing design. The team has determined the following server services that would be needed to support the online transaction infrastructure: * A database server * A Web server * A file server * A Simple Mail Transfer Protocol (SMTP) server * A Lightweight Directory Access Protocol (LDAP) server All servers would be physically located in a third-party data center. Tasks You need to: Understand the business need of First World Bank Savings and Loan. Point out specific legislation and regulations that meet the statutory compliance criteria. Assess the feasibility of Linux and open source infrastructure...

Words: 780 - Pages: 4

Premium Essay

Evolution of the Universe

...UNIX, Linux, Mac, and Windows OS Comparison Paper B. James Bryant UNIX, Linux, Mac, and Windows OS Comparison In 1956, General Motors produced the first OS for its IBM 704 series mainframe. Since then companies around the world, both big and small, have been tirelessly researched, testing, and releasing newer and faster operating systems for the world to use. Among these are systems developed by/for UNIX, Linux, Microsoft, and Apple. In fact, it’s safe to say that these four companies have a monopoly on all current technology used in both the military, corporate, and private sectors all around the world. UNIX Operating System Unix operating systems have the ability to be multi-user, multi-tasking and portable. Multi-user capabilities are accomplished through time sharing which means the processor allocates slices of time to first one process and then the next, sharing the available time in sequence with waiting processes (Nagpal, 2009). Unix can run in either command line interface, CLI, or graphic user interface or GUI mode. A key and unique feature of Unix is that it has a modular design which allows parts of the system to be added or removed without affecting performance of the other parts making Unix systems highly customizable. Unix operating systems have four core components, (1) the kernel, (2) the shell, (3) the file system, and (4) the utilities or tools and applications (Love et al, 2005). The kernel is the lowest layer of the operating system that...

Words: 5010 - Pages: 21

Premium Essay

Kohls Manager

...UNIX/Linux versus Mac versus Windows Rough Draft Annette Freshwater, POS355 November 4, 2013 Alicia Pearlman UNIX/Linux versus Mac versus Windows Final In today’s world of technology creation, development, and enhancement there are key factors to take into consideration. The choice of operating systems can determine the software and hardware utilized, the applications of the devices or programs, and determines the demographic, which will use the products. However the ever-changing field of technology has become more user-friendly, compatible, and more accepted in main stream than before. The main operating systems employed today are as follows: UNIX/Linux, Mac, and Windows. We will explore the various aspects of key components in these operating systems, memory, process, and file management along with the security of each system. The comparison of each system will determine the operating system best suited for the needs of our creations, projects, and improvements to the technology of the past, present, and future. MEMORY MANAGEMENT Memory management in multiprocessor systems is essential in executing several processes simultaneously. The multitasking of a system aids the user in accomplishing his or her task more efficiently than with a single processor system, which is important in the current climate of today’s multifaceted mix of professional and personal world. Why choose UNIX/Linux, Mac, or Windows to develop a device, product, or program? The...

Words: 2557 - Pages: 11

Free Essay

Wifi Encryption

...Term Paper Christopher Talbott American Public University System Wireless Networks and their Security Risks This purpose of this paper is to discuss the current state of Wireless networks. Their different security features and known issues with wireless technology. As well as how business implement Wireless networks, the different hacking methods used against Wireless networks and its future technological uses. There are many different wireless standards ranging from 802.11b to the new 802.11ac standard. Many manufactures exist with their own unique features for both home and business use. Each Wireless network standard was set forth an agreed upon by the IEEE or Institute of Electrical and Electronics Engineers. “IEEE is the world's largest professional association dedicated to advancing technological innovation and excellence for the benefit of humanity. IEEE and its members inspire a global community through IEEE's highly cited publications, conferences, technology standards, and professional and educational activities, ("About IEEE," 2014)”. The IEEE sets forth the standards for each 802.11 standard, starting with 802.11b, which is a “Wireless radio-frequency local area network. 802.11b, adopted Sept. 1999, operates at 11 Mbps in 2.4GHz band. By end of 2000, IEEE to approve backward-compatible 22 Mbps version of 802.11b HR, to be dubbed 802.11b HRb, (Palenchar, J. (2000)”. 802.11b was the first widely adopted Wireless network for home use. Routers and wireless cards...

Words: 1929 - Pages: 8