Use LEFT and RIGHT arrow keys to navigate between flashcards;
Use UP and DOWN arrow keys to flip the card;
H to show hint;
A reads text to speech;
25 Cards in this Set
- Front
- Back
What is a firewall? |
A piece of software or hardware that controls incoming and outgoing network traffic. |
|
A firewall filters traffic based upon a given ______ _______. |
rule set |
|
What does a firewall separate? |
A firewall separates trusted and untrusted networks. |
|
Where are firewalls used? (3) |
1. Routers |
|
What types of firewalls will I encounter in Linux? (3) |
1. IP Tables |
|
What does UFW stand for? |
Uncomplicated firewall. |
|
What is UFW? |
Is used on debian based distro's and was designed to be an easy |
|
What are IPTables? |
Is comprised of the nefilter kernel module and the Iptables software. The software works upon tables and chains that allow you the customize when and where traffic is either permitted or denied. |
|
What is system-config-firewall-tui? |
GUI Version of IPTables |
|
IPtables is built upon tables and chains that filter all network traffic 3 chains: (3) |
1. Input: traffic originating from another computer destined to our computer. |
|
________ __________ are added to each of these chains. When this is matched, it either ACCEPTs or DROPs the packet. |
Filtering rules. |
|
What is bastion host? |
A bastion host is defined as a "hardened server" that is exposed to foreign networks and grants access to our own. |
|
What is server hardening? |
Server hardening is the process of installing and configuring software to make a server as secure as possible. |
|
Server hardening includes the following 6 things. |
1. Installing patches |
|
What 4 pieces of software are used to harden a server? |
1. Tripwire |
|
What 2 server hardening softwares to do use in this class? |
1. Tripwire |
|
What 2 commands do we run to ensure that the server is up to date so that any exploit that may be present for the server is patched? |
sudo yum update |
|
_______ is the Linux equivalent of the attrib command in DOS. |
Chattr |
|
What does the chattr -i flag do? |
The -i flag allows us to set a file to immutable. This means the file unable to be altered, renamed, or have a shortcut created to it. |
|
What does the chattr -a flag do? |
The -a flag allows the administrator to make a file append mode only. This option is perfect for log files. |
|
After changing the file permissions we can view the alterations using the ___________ command. |
lsattr |
|
What is the command to disable root account? |
sudo passwd -l root |
|
What is the command to enable root account? |
sudo passwd -u root |
|
What is Tripwire? |
Tripwire is an Intrusion Detection System (IDS). Think of Tripwire as a house alarm. Only notifying you if your house has been broken into. The problem with IDS's is they only deter criminals, They do not prevent them. Please note that tripwire is not support by Redhat.
|
|
What is Snort? |
Snort is a real time intrusion prevention system (IPS): This is the same type of security that is used in bank vaults.
|