DFW UNIX Users Group
SearchWiki:
Top . Main . RdpTOCCode
Recent Changes Printable View Page History Edit Page
Content Last Modified on November 26, 2009, at 10:50 PM CST

Table of Contents code - 062306


Table of Contents



Table of Contents code - 061806

Table of Contents



Table of Contents code - 100605

Service-Oriented Architecture (SOA)
Service Oriented Architecture (SOA) is an architectural style whose goal is to achieve loose coupling among interacting software agents. A service is a unit of work done by a service provider to achieve desired end results for a service consumer. Both provider and consumer are roles played by software agents on behalf of their owners.

This sounds a bit too abstract, but SOA is actually everywhere. Let's look at an example of SOA which is likely to be found in your living room. Take a CD for instance. If you want to play it, you put your CD into a CD player and the player plays it for you. The CD player offers a CD playing service. Which is nice because you can replace one CD player with another. You can play the same CD on a portable player or on your expensive stereo. They both offer the same CD playing service, but the quality of service is different.

The IoD Strategy, the Pervasive Information Fabric using agents and multi-agents and the E2EIoD processes are a "Storage-based" approach to SOA. The "Quality of Service (QoS)" difference is pre-determined by the Service Level Agreement (SLA) process.
The SOA is driven by the SLA's and both are based on the Unit of Information Content. Not the Unit of Technology storing it.

Table of Contents

Begin Postings

Table of Contents code - 082805

Table of Contents

Begin Postings

Desktop Footprint is Shrinking

Affordable SOHO Backups

Add New Topic One

Add New Topic Two

Add New Topic Three

Add New Topic Four

Return to DFWUUG Wiki Main page

If Wishes were Horses

Table of Contents Code

Begin Postings

Table of Contents code - 071205

Table of Contents

How to get Root Rights on Linux

*nix SOHO Protect Strategy

How do we know when the SOHO Protect Strategy is "As Good as it Gets"?

*nix SOHO Protect Strategy01 - A mostly Enterprise Roadmap - not much detail - Some features apply to the SOHO

Should We All Just Use Macs? - OSX is Unix

Enterprise-like SOHO Protect Strategy (includes PC 's or mostly PC based)

Begin Postings

How to get Root rights on Linux ?

LINUX Info diagram (linux.gif) goes here

  1. To protect your Linux,
    1. use only Linux
    2. use shadow password (Run pwconv as root)
    3. setup LILO password
    4. keep your Linux up-to-date
    5. subscribe to bugtrack mailling liste
    6. read the Linux Administrator Security Guide LASG and #Securing-Optimizing-Linux-RH-Edition
    7. Remove the services you don't use (don't forget inetd services in /etc/inetd.conf)
    8. Replace inetd by xinetd
  2. Convert your old information: itox -t /usr/sbin/ < /etc/inetd.conf > /etc/xinetd.conf
  3. Update your /etc/hosts.allow to reflect service name and not binary name.
    1. Your default policy must be deny (ALL:ALL in /etc/hosts.deny)
    2. Setup a firewall with a default deny policy NetFilter
    3. Use OpenSSH instead of telnet and configure it correctly (no X forwarding in client, limit simultaneous connection for your server)
  4. If you use Winx, you can get PuTTY, free win32 telnet/ssh client
    1. Configure your servers to run as non root (Squid,Mysql,Apache,IPLog,Bind,PostFix...)
    2. If you run an X server with XDM/KDM/GDM, use the last version of XFree server with Xwrapper and deny XDMCP: XDM, KDM : /etc/X11/xdm/Xaccess
  5. GDM : look for [security] and [xdmcp] in /etc/X11/gdm/gdm.conf
    1. Chrooted BIND/DNS servers
    2. IPLog: TCP/IP traffic logger
    3. Nessus: Remote Security Scanner
  6. Use the option "-a 127.0.0.1" to only listen to loopback interface
    1. Use PostFix instead of Sendmail
  7. Important parameters in main.cf are mydestination and relay_domains
    1. smtpd_banner = $myhostname ESMTP $mail_name
    2. Use ProFTPD instead of `Wu-FTPD
  8. In /etc/proftpd.conf, set
    1. SyslogFacility AUTH
    2. ExtendedLog /var/log/ftp.log AUTH
    3. ServerIdent Off
    4. Restrict crontab users with /etc/cron.allow
    5. NMAP port scanner

  9. The password cracker John The Ripper is avaible at http://www.openwall.com/john/.

    • Introduction to Awk
    • The Unix Shell Guide
    • HTML Reference

Return to Table of Contents

*nix SOHO Protect Strategy

  1. Firewall - first line of defense
    1. Does *nix need a hardware firewall?
      1. Even on dial-up?
    2. What's a good "iptables" setup to start with?
      1. For Linux?
      2. For Unix?
      3. Are the Linux and Unix "iptables" the same?
      4. How are they different?
  2. Identity Management
    1. LDAP ?
    2. NIS/NIS+ ?
    3. Other ?
  3. Trusted Network and Hosts
    1. DHCP Configuration?
    2. DNS Configuration?

Return to Table of Contents

How do we know when the SOHO Protect Strategy is "As Good as it Gets"?

  1. Is my SOHO Protected? or Infected?
  2. How to determine the level of protection?
  3. How to test the protection level after changes to the SOHO?

Return to Table of Contents

*nix SOHO Protect Strategy01 - A mostly Enterprise Roadmap - not much detail - Some features apply to the SOHO

Return to Table of Contents

Should We All Just Use Macs? - OSX is Unix

Return to Table of Contents

Enterprise-like SOHO Protect Strategy

Return to Table of Contents

WikiHelp
Recent Changes Printable View Page History Edit Page
Special thanks for hosting our website to Central Iowa (Model) Railroad!