Network Security Toolkit distribution aids network security administrators
07-23-2008 08:00 AM
Network Security Toolkit is one of many live CD Linux distributions focusing on network monitoring, analysis, and security. NST was designed to give network security administrators easy access to a comprehensive set of open source network applications, many of which are among the top 100 security tools recommended by insecure.org.
Hi
I was wondering if someone could give some tips about network security postgraduate courses and/or certifications .
I know that is a generic question and a wide area, but that's the problem, the net is full of books, courses, or whatever.
My goal is to find a good course (or book) that... (0 Replies)
I am going to take up a position in Data & Network Security.
I would need to write network shell scripts doing the following task:
Going to around 2000 servers and findout which groups has access to each servers and which ids are there in each group that has access.
I need to implement... (1 Reply)
Hi,
I am about to take up task of shell scripting in Network Security. Just started on job. But everything looks new NIS etc..
I tried googling to find systematic explanation of network security terms and how to script for that. But was unable to find. Could anyone of you please direct me to... (1 Reply)
Hi, I'm currently in a Technical Writing class and I decided to do a report on network security. I need a primary source for this and decided that I would poll you fine people on your prefrences in security related software to get said primary source.
1. What webserver would you consider to be... (1 Reply)
hi there,
i'm wondering what are the good books out there on internet security, PREFERABELY all topics roll into 1 book
topics like firewall DES,3DES,SHA,SSL,CHAP,EAP SPAP,PAP,VPN,L2TP,PPTP,IAS,Kerboros,IPsec,PKI,digital signatures/certifcates,Denial of service,RADIUS,RAS,viruses,trojan... (2 Replies)
MAC_IFOFF(4) BSD Kernel Interfaces Manual MAC_IFOFF(4)NAME
mac_ifoff -- interface silencing policy
SYNOPSIS
To compile the interface silencing policy into your kernel, place the following lines in your kernel configuration file:
options MAC
options MAC_IFOFF
Alternately, to load the interface silencing policy module at boot time, place the following line in your kernel configuration file:
options MAC
and in loader.conf(5):
mac_ifoff_load="YES"
DESCRIPTION
The mac_ifoff interface silencing module allows administrators to enable and disable incoming and outgoing data flow on system network inter-
faces via the sysctl(8) interface.
To disable network traffic over the loopback (lo(4)) interface, set the sysctl(8) OID security.mac.ifoff.lo_enabled to 0 (default 1).
To enable network traffic over other interfaces, set the sysctl(8) OID security.mac.ifoff.other_enabled to 1 (default 0).
To allow BPF traffic to be received, even while other traffic is disabled, set the sysctl(8) OID security.mac.ifoff.bpfrecv_enabled to 1
(default 0).
Label Format
No labels are defined.
SEE ALSO mac(4), mac_bsdextended(4), mac_lomac(4), mac_mls(4), mac_none(4), mac_partition(4), mac_portacl(4), mac_seeotheruids(4), mac_test(4), mac(9)HISTORY
The mac_ifoff policy module first appeared in FreeBSD 5.0 and was developed by the TrustedBSD Project.
AUTHORS
This software was contributed to the FreeBSD Project by Network Associates Labs, the Security Research Division of Network Associates Inc.
under DARPA/SPAWAR contract N66001-01-C-8035 (``CBOSS''), as part of the DARPA CHATS research program.
BUGS
See mac(9) concerning appropriateness for production use. The TrustedBSD MAC Framework is considered experimental in FreeBSD.
While the MAC Framework design is intended to support the containment of the root user, not all attack channels are currently protected by
entry point checks. As such, MAC Framework policies should not be relied on, in isolation, to protect against a malicious privileged user.
BSD December 10, 2002 BSD