Good reference on Linux authentication and security
This is a discussion on Good reference on Linux authentication and security within the Linux Security forums, part of the System Security and Security Related category; Hello; I need to change the way people login and logout from Linux... this way I will probably need to ...
|
|||||||
| FAQ | Members List | Calendar | Search | Today's Posts | Mark Forums Read |
09-26-2004
|
|||
|
|||
Good reference on Linux authentication and security
Hello; I need to change the way people login and logout from Linux... this way I will probably need to modify getty, login, xgm, gdm and probably others. The idea is to use PAM and require a hardware authentication device for every application mentioned. My first idea was to modify those programs in order they require the device insertion (probably USB). Later I had another idea, but I cant say it will work, so I would be pleased if you could give opinions: "By using PAM, I can require that a new module (my_module.so) need to be processed for an application (e.g. login). This module would make a direct call to the USB device driver". Additionally, I would be pleased if you could suggest good references on "Security and Authentication on Linux". Thank you Roberto Gallo 
|
|
09-26-2004
|
|||
|
|||
|
Re: Good reference on Linux authentication and security
On Sat, 25 Sep 2004 22:09:20 -0400, Roberto Gallo wrote:
> Hello; ><sNip> ... > Additionally, I would be pleased if you could suggest good references > on "Security and Authentication on Linux". > > Thank you > > Roberto Gallo While you need to be observent of precautions and permissions on your own systems, remember that a lot depends on your ISP. Linux (*nix) in its many forms, probably provides the most comprehensive security arsenal available. Use it all to your best advantage. Reccomend TLDP, The Linux Documentation Project. http://www.tldp.org .... and go from there. Best wishes -- n e w s b o x /AT/ c u s t o m e r s - o f - a d e l p h i a (dot) o r g
|
|
09-29-2004
|
|||
|
|||
|
Re: Good reference on Linux authentication and security
On Sat, 25 Sep 2004 23:09:20 -0300, Roberto Gallo wrote:
> > Hello; > > I need to change the way people login and logout from Linux... this way I > will probably need to modify getty, login, xgm, gdm and probably others. > > The idea is to use PAM and require a hardware authentication device for > every application mentioned. My first idea was to modify those programs > in order they require the device insertion (probably USB). > > Later I had another idea, but I cant say it will work, so I would be > pleased if you could give opinions: > > "By using PAM, I can require that a new module (my_module.so) need to be > processed for an application (e.g. login). This module would make a > direct call to the USB device driver". > > Additionally, I would be pleased if you could suggest good references on > "Security and Authentication on Linux". > > Thank you > > Roberto Gallo Look at some of the many "hardened" linux projects such as those from Gentoo (yes, a shameless plug for my favorite distro), SE Linux and NSA Linux.
|
Linear Mode
