Community Forum for discussions and exchange of ideas related to IBM Linux Security, including the Linux Security related Blueprints posted on IBM's Information Center for Linux.
The Security Blueprint(s) are available for both RHEL 5.2 and SLES 10 SP2 running on System x and provide concrete advice on how to use encryption to protect data at rest and vastly improve an organization’s resistance to data leaks. These blueprints demonstrates step by step how to setup a new encrypted data partition, swap partition, temporary file system, and how to migrate your old data to a new encrypted partition.
The eCryptfs Blueprint discusses key management which is traditionally the weakest point in deployed data encryption mechanisms. This blueprint explains how to build and install the eCryptfs software along with its dependencies, how to set up encrypted swap, how to generate a TPM-sealed key, and how to perform the eCryptfs mount with the TPM-sealed key on Red Hat Enterprise Linux Version 5.2.
The MIT-Kerberos with IBM Tivoli Directory Server Blueprint describes, in detailed steps, the procedure to configure a Kerberos authentication Realm using MIT-Kerberos and Tivoli Directory Server (ITDS) V6.2 to store the authentication data. SELinux provides a brief introduction to basic SELinux commands and concepts (including Boolean variables) and discusses how to increase the security of the Apache Web server with SELinux by using these concepts.
By using this forum, you agree to abide by the forum etiquette and that you understand the Terms of Use governing this web site.
|
