Definition What does Operating System Security (OS Security) mean?
Operating system security (OS security) is the process of ensuring OS integrity, confidentiality and availability.
OS security refers to specified steps or measures used to protect the OS from threats, viruses, worms, malware or remote hacker intrusions. OS security encompasses all preventive-control techniques, which safeguard any computer assets capable of being stolen, edited or deleted if OS security is compromised.
OS security may be approached in many ways, including adherence to the following:
Performing regular OS patch updates
Installing updated antivirus engines and software
Scrutinizing all incoming and outgoing network traffic through a firewall
Creating secure accounts with required privileges only (i.e., user management)
Defence in depth:
Windows Server Hardening
Server Hardening Standard
Windows Server 2016 Hardening Checklist
Windows Server Hardening Checklist
The Quick Lockdown
Hardening IIS
DNS SECURITYBEST PRACTICES
SQL Server Audit Checklist
Alpha High Level Description
Linux Server Hardening:
Red Hat Enterprise Linux 6 Security Guide
Red Hat Enterprise Linux 7 Hardening Checklist
How To Configure The AIDE
How to manage ACLs on Linux
Basic Guide To Encrypting Linux Partitions With LUKS
Logging iptables messages with rsyslog
Red Hat Enterprise Linux 7 SELinux Users and Administrators Guide
The Linux-PAM Guides
Intrusion Detection & SNORT
How to Install Linux Malware Detect (LMD) and ClamAV on CentOS 7
Three Tools to Scan a Linux Server for Viruses, Malware and Rootkits
10 lsof Command Examples in Linux
How To Encrypt OpenLDAP Connections Using STARTTLS
BIND 9 Security best practices
Hardening SSH
Protecting an unpatched Samba server
Red Hat Enterprise Linux 7 Firewalld HowTo
Full-mesh IPsec network
Postfix Hardening Guide for Security and Privacy
Scanning:
Windows
SolarWinds Network Security Tools with Engineers Toolset (FREE TRIAL) The SolarWinds Engineers Toolset includes a Security Event Manager, a Patch Manager, and a User Device Tracker to help you to tighten system security.
Nessus is constantly updated, with more than 70,000 plugins. Key features include remote and local (authenticated) security checks, a client/server architecture with a web-based interface, and an embedded scripting language for writing your own plugins or understanding the existing ones. For downloads and more information, visit the Nessus homepage.
Kaspersky Lab antivirus & internet security software offers premium protection against viruses, malware, spam & other threats for your home or business.
Vulnerability Scan in Kaspersky Total Security
Linux
The OpenSCAP ecosystem provides multiple tools to assist administrators and auditors with assessment, measurement, and enforcement of security baselines.
Using oscap
OpenVAS is a full-featured vulnerability scanner. Its capabilities include unauthenticated testing, authenticated testing, various high level and low level Internet and industrial protocols, performance tuning for large-scale scans and a powerful internal programming language to implement any type of vulnerability test.
OpenVAS Vulnerability Assessment install on Kali Linux
Automation
Puppet
One of the best ways to ensure good, solid security on systems across your organization is to establish baselines defining a minimum set of standards for access, firewalls and services. Puppet can help you define, build, and maintain those configuration management baselines in a straightforward way thats just not possible when working at scale.
(QUOTE)
Thekoftte
Operating system security (OS security) is the process of ensuring OS integrity, confidentiality and availability.
OS security refers to specified steps or measures used to protect the OS from threats, viruses, worms, malware or remote hacker intrusions. OS security encompasses all preventive-control techniques, which safeguard any computer assets capable of being stolen, edited or deleted if OS security is compromised.
OS security may be approached in many ways, including adherence to the following:
Performing regular OS patch updates
Installing updated antivirus engines and software
Scrutinizing all incoming and outgoing network traffic through a firewall
Creating secure accounts with required privileges only (i.e., user management)
Defence in depth:
Windows Server Hardening
Server Hardening Standard
Windows Server 2016 Hardening Checklist
Windows Server Hardening Checklist
The Quick Lockdown
Hardening IIS
DNS SECURITYBEST PRACTICES
SQL Server Audit Checklist
Alpha High Level Description
Linux Server Hardening:
Red Hat Enterprise Linux 6 Security Guide
Red Hat Enterprise Linux 7 Hardening Checklist
How To Configure The AIDE
How to manage ACLs on Linux
Basic Guide To Encrypting Linux Partitions With LUKS
Logging iptables messages with rsyslog
Red Hat Enterprise Linux 7 SELinux Users and Administrators Guide
The Linux-PAM Guides
Intrusion Detection & SNORT
How to Install Linux Malware Detect (LMD) and ClamAV on CentOS 7
Three Tools to Scan a Linux Server for Viruses, Malware and Rootkits
10 lsof Command Examples in Linux
How To Encrypt OpenLDAP Connections Using STARTTLS
BIND 9 Security best practices
Hardening SSH
Protecting an unpatched Samba server
Red Hat Enterprise Linux 7 Firewalld HowTo
Full-mesh IPsec network
Postfix Hardening Guide for Security and Privacy
Scanning:
Windows
SolarWinds Network Security Tools with Engineers Toolset (FREE TRIAL) The SolarWinds Engineers Toolset includes a Security Event Manager, a Patch Manager, and a User Device Tracker to help you to tighten system security.
Nessus is constantly updated, with more than 70,000 plugins. Key features include remote and local (authenticated) security checks, a client/server architecture with a web-based interface, and an embedded scripting language for writing your own plugins or understanding the existing ones. For downloads and more information, visit the Nessus homepage.
Kaspersky Lab antivirus & internet security software offers premium protection against viruses, malware, spam & other threats for your home or business.
Vulnerability Scan in Kaspersky Total Security
Linux
The OpenSCAP ecosystem provides multiple tools to assist administrators and auditors with assessment, measurement, and enforcement of security baselines.
Using oscap
OpenVAS is a full-featured vulnerability scanner. Its capabilities include unauthenticated testing, authenticated testing, various high level and low level Internet and industrial protocols, performance tuning for large-scale scans and a powerful internal programming language to implement any type of vulnerability test.
OpenVAS Vulnerability Assessment install on Kali Linux
Automation
Puppet
One of the best ways to ensure good, solid security on systems across your organization is to establish baselines defining a minimum set of standards for access, firewalls and services. Puppet can help you define, build, and maintain those configuration management baselines in a straightforward way thats just not possible when working at scale.
(QUOTE)
Thekoftte
Son düzenleme: