How to install and secure egroupware - Directory UMM
How to install and secure egroupware - Directory UMM
How to install and secure egroupware - Directory UMM
Create successful ePaper yourself
Turn your PDF publications into a flip-book with our unique Google optimized e-Paper software.
6.1.3.3 Installing chkrootkit from the tar.gz file<br />
Unpack <strong>and</strong> <strong>install</strong> Chkrootkit<br />
“chkrootkit outpu t” <strong>to</strong> “chkrootkit myserver outpu t”<br />
root <strong>to</strong> your_email_adress@yourserver.com<br />
[root@server tmp]# cp chkrootkit.tar.gz /usr/local; rm chkrootkit.tar.gz<br />
[root@server tpm]# cd /usr/local/<br />
[root@server local]# tar xzvf chkrootkit.tar.gz<br />
[root@server local]# mv chkrootkit-x.xx chkrootkit<br />
[root@server local]# chown –R root.root chkrootkit<br />
[root@server chkrootkit]# cd chkrootkit<br />
[root@server chkrootkit]# make sense<br />
To make chkrootkit send you the report you have two possibilities: create a chkrootkit_cronfile or add a line<br />
<strong>to</strong> the crontab file.<br />
To create a chkrootkit_cronfile:<br />
[root@server cron.daily]# vi chkrootkit_cronfile<br />
#!/bin/sh<br />
cd /usr/local/chkrootkit ./chkrootkit 2> /dev/null | mail –s “chkrootkit myserver output” your_email_adress<br />
Alternatively, extend the crontab file with the following line:<br />
0 1 * * * root (cd /usr/local/chkrootkit; ./chkrootkit 2>&1 | mail –s<br />
"chkrootkit output" your_email_adress)<br />
Now chkrootkit will send you a report <strong>to</strong> the address above.<br />
6.1.4 Secure server administration<br />
If you want <strong>to</strong> administrate your server <strong>secure</strong>ly, use the SSH (<strong>secure</strong> shell). With SSH, all connections are<br />
encrypted, whereas with pro<strong>to</strong>cols like telnet <strong>and</strong> ftp, the user accounts <strong>and</strong> passwords are transmitted<br />
unencrypted (in clear text format). The transfer of the passwords <strong>and</strong> account information is easy <strong>to</strong> sniff for an<br />
attacker if it is in cleartext. With the sniffed passwords, a hacker can login <strong>to</strong> your account.<br />
Reiner Jung Install <strong>and</strong> Secure eGroupWare Page 24 of 67