We see a lot written about security in the Linux world.
We see a lot of comparisons and contrasts made between distros as well as "other" Operating Systems as well.
What is all the talk about? Who is it it really impacting and whose fault, if any, is it if security isn't "good enough"?
First off, why do we need security?
Is it simply a bunch of miscreants and criminals who, much like the "real" world, are compelled to live life on the wrong side of the law. To steal, damage and destroy because that is what they are compelled to do?
To use the "perfect world" scenario people love to use, security wouldn't even really be needed if people minded their own business and respected others peoples space and property.
But they don't. It isn't a "perfect world", they say, and they're right. It isn't.
But, just because it isn't a perfect world, that doesn't mean people shouldn't have expectations.
Security used to be like the "old days", the Leave it to Beaver days, when the need to lock doors and bolt windows to to keep unwitting or overly curious kids and neighbors in check.
Even then, you had your share of evildoers. Those hoodlums and thugs who went the low road and gave us good reasons to be distrustful.
It is the same today really.
You have about the same proportion of actual crooks who are hell bent on stealing passwords and credit card numbers for personal gain.
You have overly curious kids and nare-do-well's who find sport in being where they don't belong.
We also have corporations who like to play both sides of the fence.
They sell us tools to keep thieves out, then sell or leak info to "the right places" which just so happens to counter what they sold previously. they're making money on both ends of the deal and to hell with "ethics" or morality. It's just about money.
By the way, those companies do exist, they have been found from time to time and sometimes, when the right politicians, lawyers or judges haven't been compromised ahead of time, they actually get in trouble for it.
So, what's an admin to do? Be it a server or network at home or in a small business, heck, even at the enterprise level, there is no shortage of advice on how to handle security.
There is a "rule" that applies to almost all businesses, technologies, practices and otherwise that applies here.
Follow the KISS method. ( and no, this doesn't mean Gene Simmons will be reading your fail2ban logs)
Keep It Simple, Stupid
Meaning. Start at the basics. Begin with practices and habits. Don't be lazy, use secure passwords, don't write them down. Exercise that flabby memory!
There are lots of great, cool tools and apps to help secure and tighten down a system. They do absolutely no good though, if you don't use them. Take the time to read how they work. Install them. USE them.
Remember, just as in securing a home or office, if someone wants in bad enough they will find a way in. It doesn't matter how much money you spend, how many tools you use, locks you install. Greed and desperation are fierce opponents. Never think you are impenetrable.
What does that mean? Never let your guard down.
Keep your eyes and ears open. Ask any police or security officer in the world. The odds of breakin are highest from within. It is a great thing to be able to trust the people around you everyday. That's why they work so hard to build that trust, so you will relax and practically hand them what they need to get what they want. Does it happen every place every day? Of course not. But, it happens often enough to cause a wise admin to always think twice about who he or she hands the keys to.
The vast majority of stolen information comes not from break-ins and being cracked. It comes from bad habits.
Not shredding critical papers.
Tossing papers into trashcans without being inspected first. Did that guy who just got his email password back really just write it down on a napkin then forget the napkin on his desk? Holy Moly.
Eavesdropping is always popular. Stand in the vicinity of the guy who is doing his darndest to look and sound important. Oh cool, he just told his secretary his username and password over the phone so she could download that file and fax it to him.
BAD HABITS. Laziness, forgetfulness, brown-nosing, vanity and a host of other things we do are most likely what will compromise our precious security.
We have seen "top secret" government high level officials almost literally "give away" sensitive information and documents because of bad habits. Or worse, violating he trust placed in them y doing exactly what they were told not to do.
Highly "secured" military laptops have been compromised because some shmuck took the machine home and forgot about it.
All the great technology, training and development in the world won't mean a hill of beans if we don't start with the most basic steps keep our information safe.
Now, I am not knocking in any way the use of the myriad and assorted apps and tools out there that can help you to keep a secure ( as possible ) environment, but I am saying, we should always start with the basics.
Good practices and habits laid down from the get go, combined with smart tools and apps will make your server or desktop system as safe as it can be.
Snort, fail2ban, bastille, SELinux, and a host of others are tremendous at helping to keep those who shouldn't be there to begin with at bay.
If you don't lay down the rules, procedures and practices with yourself and your staff/users, they will sit there and be of much less value and significance.
Think of it in terms of your home or office. If you buy a fantastic central air system, put in the best power surge equipment and fans/blowers, electronic thermometers and control systems, that's great.
It won't be of much good if everyone leaves the doors wide open.
You got a tremendous security system for your house? Electronic monitoring, laser scans, fingerprint entry. Way Cool.
If you don't set the system when you leave, what's the point?
These things are what many people would consider "common sense" types of things, and yet, on a daily basis, techs and support staff are confronted with the results of these ideas not being observed and followed through on.
Help yourself, help your system. save some time energy and maybe money.
By all means, use the fancy tools and apps. Get the latest updates.
Just remember to lock the door when you leave.
Saturday, September 20, 2008
Subscribe to:
Post Comments (Atom)
0 comments:
Post a Comment