Contents
Security Guide
- About This Guide
- 1 Security and Confidentiality
- I Authentication
- II Local Security
- III Network Security
- IV Confining Privileges with AppArmor
- 18 Introducing AppArmor
- 19 Getting Started
- 20 Immunizing Programs
- 21 Profile Components and Syntax
- 22 AppArmor Profile Repositories
- 23 Building and Managing Profiles with YaST
- 24 Building Profiles from the Command Line
- 25 Profiling Your Web Applications Using ChangeHat
- 26 Confining Users with
pam_apparmor - 27 Managing Profiled Applications
- 28 Support
- 29 AppArmor Glossary
- V The Linux Audit Framework
- A Documentation Updates
- B GNU 授權
SUSE Linux Enterprise Desktop 12 SP2
Security Guide
Introduces basic concepts of system security, covering both local and network security aspects. Shows how to use the product inherent security software like AppArmor or the auditing system that reliably collects information about any security-relevant events.
Publication Date:
October 19, 2016
- About This Guide
- 1 Security and Confidentiality
- I Authentication
- II Local Security
- III Network Security
- IV Confining Privileges with AppArmor
- 18 Introducing AppArmor
- 19 Getting Started
- 20 Immunizing Programs
- 21 Profile Components and Syntax
- 22 AppArmor Profile Repositories
- 23 Building and Managing Profiles with YaST
- 24 Building Profiles from the Command Line
- 25 Profiling Your Web Applications Using ChangeHat
- 26 Confining Users with
pam_apparmor - 27 Managing Profiled Applications
- 28 Support
- 29 AppArmor Glossary
- V The Linux Audit Framework
- 30 Understanding Linux Audit
- 30.1 Introducing the Components of Linux Audit
- 30.2 Configuring the Audit Daemon
- 30.3 Controlling the Audit System Using
auditctl - 30.4 Passing Parameters to the Audit System
- 30.5 Understanding the Audit Logs and Generating Reports
- 30.6 Querying the Audit Daemon Logs with
ausearch - 30.7 Analyzing Processes with
autrace - 30.8 Visualizing Audit Data
- 30.9 Relaying Audit Event Notifications
- 31 Setting Up the Linux Audit Framework
- 32 Introducing an Audit Rule Set
- 32.1 Adding Basic Audit Configuration Parameters
- 32.2 Adding Watches on Audit Log Files and Configuration Files
- 32.3 Monitoring File System Objects
- 32.4 Monitoring Security Configuration Files and Databases
- 32.5 Monitoring Miscellaneous System Calls
- 32.6 Filtering System Call Arguments
- 32.7 Managing Audit Event Records Using Keys
- 33 Useful Resources
- A Documentation Updates
- A.1 October 2016 (Initial Release of SUSE Linux Enterprise Desktop 12 SP2)
- A.2 March 2016 (Maintenance Release of SUSE Linux Enterprise Desktop 12 SP1)
- A.3 December 2015 (Initial Release of SUSE Linux Enterprise Desktop 12 SP1)
- A.4 February 2015 (Documentation Maintenance Update)
- A.5 October 2014 (Initial Release of SUSE Linux Enterprise Desktop 12)
- B GNU 授權
List of Figures
- 3.1 Setting Domain and Address of a NIS Server
- 4.1 Authentication Client Configuration
- 4.2 Authentication Client: Adding New Domain (LDAP and Kerberos)
- 4.3 Authentication Client: Mandatory Parameters (LDAP and Kerberos)
- 5.1 Structure of an LDAP Directory
- 6.1 Active Directory Authentication Schema
- 6.2 Determining Windows Domain Membership
- 6.3 Providing Administrator Credentials
- 8.1 YaST Security Center and Hardening: Security Overview
- 10.1 Minimum ACL: ACL Entries Compared to Permission Bits
- 10.2 Extended ACL: ACL Entries Compared to Permission Bits
- 15.1 iptables: A Packet's Possible Paths
- 15.2 Firewall Configuration: Allowed Services
- 16.1 Routed VPN
- 16.2 Bridged VPN - Scenario 1
- 16.3 Bridged VPN - Scenario 2
- 16.4 Bridged VPN - Scenario 3
- 17.1 YaST CA Module—Basic Data for a Root CA
- 17.2 YaST CA Module—Using a CA
- 17.3 Certificates of a CA
- 17.4 YaST CA Module—Extended Settings
- 24.1
aa-notify Message in GNOME - 25.1 Adminer Login Page
- 30.1 Introducing the Components of Linux Audit
- 30.2 Flow Graph—Program versus System Call Relationship
- 30.3 Bar Chart—Common Event Types
List of Tables
List of Examples
- 2.1 PAM Configuration for sshd (
/etc/pam.d/sshd) - 2.2 Default Configuration for the
authSection (common-auth) - 2.3 Default Configuration for the
accountSection (common-account) - 2.4 Default Configuration for the
passwordSection (common-password) - 2.5 Default Configuration for the
sessionSection (common-session) - 2.6 pam_env.conf
- 5.1 Excerpt from schema.core
- 16.1 VPN Server Configuration File
- 16.2 VPN Client Configuration File
- 19.1 Output of
aa-unconfined - 24.1 Learning Mode Exception: Controlling Access to Specific Resources
- 24.2 Learning Mode Exception: Defining Permissions for an Entry
- 30.1 Example output of
auditctl-s - 30.2 Example Audit Rules—Audit System Parameters
- 30.3 Example Audit Rules—File System Auditing
- 30.4 Example Audit Rules—System Call Auditing
- 30.5 Deleting Audit Rules and Events
- 30.6 Listing Rules with
auditctl-l - 30.7 A Simple Audit Event—Viewing the Audit Log
- 30.8 An Advanced Audit Event—Login via SSH
- 30.9 Example /etc/audisp/audispd.conf
- 30.10 Example /etc/audisp/plugins.d/syslog.conf
版權所有 © 2006– 2016 SUSE LLC 和貢獻者。保留所有權利。
根據 GNU 自由文件授權 (GNU Free Documentation License) 1.2 版或 1.3 版 (自由選擇),使用者可以複製、散佈與/或修改本文件;「恆常章節」為此著作權聲明與授權。“GNU 自由文件授權”一節中包含 1.2 版授權的一份副本。
如需 SUSE 商標,請參閱 http://www.suse.com/company/legal/。所有其他協力廠商的商標所有權分屬其各自的公司。®、™ 等商標符號表示 SUSE 及其關聯公司的商標。星號 (*) 表示協力廠商的商標。
本手冊中所有資訊在編輯時,都已全力注意各項細節。但這不保證百分之百的正確性。因此,SUSE LLC 及其附屬公司、作者或譯者都不需對任何錯誤或造成的結果負責。