Re: Security Privacy, Big Brother, Linux Distros.

Tyler wrote:
Does anybody know how to encrypt logs? or some other ways of protecting
them against hackers so then so you can keep hackers from deleting their
presence from the logs.

As you have to tell system how to encrypt the data that is stored in the
logs, the hacker can check how the encryption is done and then of course
remove the logs.

Using syslog-ng you can log over tcp/ip, so the log would be located on
another machine, which makes it more difficult for the "hacker" to
remove the information.


I think that NSA's Security
Enhanced linux seams to work like some alternative ms windows firewalls
for example it has predefine policies for what applications can do and
not do like Comodo firewall.

SELinux adds another layer of security, it has little to do with a
firewall, as it won't prevent packages as iptables would do.


Is Security Enhanced linux really that great to use?

It depends on what you want, for a desktop that is already behind
firewalls, they usually don't have any need of SELinux, while a server
that you want protect will have gains of using SELinux.


Does any body know
if the NSA put some kind of a tracking application within Selinux if so
is there a way of blocking it?

If you are worried, check the source code. It's really tricky to hide
something like that in an open source project, and to gain the privilege
to be part of the official kernel source,a high number of highly
experienced coders have examined the source in quite detail.

It's not like Microsoft implementing backdoors, as no one will get
access to the source code and therefore can't easily detected.


--

//Aho
.

Relevant Pages

  • Re: Understand Software Fire wall Logs
    ... > Would some of you care to post some of the logs you have with your fire ... The hackers are having a hay day with their systems ... Ah yes, thats a fine idea, here are some logs for you, oh mighty firewall ...
    (comp.security.firewalls)
  • Re: FTP Client With File Encryption For Remote Backup?
    ... POST or GET request to port 80 to a web site under the authors ... glancing at logs wouldn't ... from publishing its source code, and why PGP was so stalwart in the ... I especially liked the bit where he had the source code ...
    (alt.computer.security)
  • Code Red honeypot + SMTP logger/alerter
    ... logs via SMTP to the email addressof your ... attacks per minute on a single IP address. ... ARIS email notification format ( ... then uncomment the ARIS recipient line in the source code). ...
    (Incidents)
  • Re: Unbueraucratic logging system: oxymoron?
    ... logs all his jobs, however small, such that one can use the logs to ... is very easy and creating a web interface is even easier. ... No programming ... source code is still fresh in the mind, ...
    (comp.dsp)
  • Re: [9fans] 9vx, kproc and *double sleep*
    ... You can download my own 9vx source code here: http://www.bouyapop.org/9vxigh.tar.bz2 ... Just copy it to vx32 and replace 9vx folder, compile it and execute it under gdb with you own 9vx env. ... you can watch the latest logs with the gdb command ... a circular log buffer, and I have some gdb macros which dumps the ...
    (comp.os.plan9)