Since phishing attacks are aimed at users, user awareness is a key defense. The most promising method of stopping spear phishing is continuous periodic awareness training for all users; this may even involve mock phishing attempts to test awareness.
Less effective, but still valuable methods include:
Do not mass e-mail your customer base with web links directed [...]
A “Denial of Service” (DoS) attack is one where the attacker tries to make some resource too busy to answer legitimate requests, or to deny legitimate users access to your machine.
Denial of service attacks have increased greatly in recent years. Some of the more popular and recent ones are listed below. Note [...]
Before you put your Linux system on ANY network the first thing to look at is what services you need to offer. Services that you do not need to offer should be disabled so that you have one less thing to worry about and attackers have one less place to look for [...]
One of the most common ways intruders gain access to more systems on your network is by employing a packet sniffer on a already compromised host. This “sniffer” just listens on the Ethernet port for things like passwd and login and su in the packet stream and then logs the traffic after that. [...]
The primary goal of this software is to provide a facility for secure (against eavesdropping, including traffic analysis, and faked message injection) subnetwork interconnection across an insecure packet network such as the Internet.
CIPE encrypts the data at the network level. Packets traveling between hosts on the network are encrypted. The encryption [...]
A few minutes of preparation and planning ahead before putting your systems on-line can help to protect them and the data stored on them.
There should never be a reason for users’ home directories to allow SUID/SGID programs to be run from there. Use the nosuid option in /etc/fstab for partitions that [...]
The various Linux boot loaders also can have a boot password set. LILO, for example, has password and restricted settings; password requires password at boot time, whereas restricted requires a boot-time password only if you specify options (such as single) at the LILO prompt.
>From the lilo.conf man page:
password=password
[...]
The most important first step in developing a secure environment is to avoid, wherever possible, having your Linux system being the first line of defense from outside attack. The best way to do this is to ensure that you have a firewall installed between your Linux system (or the network on which it is installed) [...]
As Linux users we have some inherent advantages over our fellow Windows users when it comes to security (or lack there of). Hackers, rather like gamblers, use the laws of odds and averages in their endeavors to find vulnerable computer systems to
break into. They will typically target the types of systems that have the most [...]
Sometimes the script you created to generate iptables rules may get corrupted or lost, or you might inherit a new system from an administer and cannot find the original script used to protect it. In these situations, you can use the iptables-save and iptables-restore commands to assist you with the continued management of the server.
Unlike [...]
