The SLUUG Cronicle
|May 1||Sat||May Day||-|
|May 5||Wed||SLUUG - Steering Committee||6:30pm -8:30pm|
|May 9||Sun||Mothers' Day||-|
|May 12||Wed||SLUUG||6:30pm -9:00pm|
|TUTORIAL: File Permissions|
|TOPIC: Security Appliances|
|May 12||Wed||ITEC - Day 1||10:00am-4:00pm|
|May 13||Thu||ITEC - Day 2||10:00am-3:00pm|
|May 20||Thu||St. Louis LUG||7:00pm -9:00pm|
|TOPIC: Tricks and Tips|
|May 25||Tue||Hazelwood LUG||6:30pm -9:00pm|
|May 27||Thu||St. Charles LUG||6:30pm -9:00pm|
|May 31||Mon||Memorial Day||-|
NOTE: More information on these groups, including locations and web sites, can be found in the "Meeting Locations" section below.
|6:30 pm||Tutorial||File Permissions by Craig Buchek|
|7:00 pm||Announcements||Standard Introductions & Procedures|
|7:05 pm||Q & A||An opportunity to ask technical questions|
|7:15 pm||Break||Social, off-line conversations, book sales|
|7:30 pm||Presentation||Security Appliances by Clarence Johnson|
This month's tutorial will cover file permissions:
Craig Buchek is our current SLUUG president. He has been using Linux since 1994. He has used various flavors of Linux and UNIX in several positions, including firewall administration, network administration, and writing training materials.
Learn the difference between equipment to handle different levels of security including hubs, bridges, switches, routers, firewalls, intrusion detection systems, NAT, and lots of other magical security potions.
Clarence Johnson has more than 15 years' experience as a computer/network engineer. He has experience with operating systems, programming, network devices, and networking protocols. Currently Clarence designs and teaches technical courses at the UM-St. Louis Microcomputer Program. Clarence also serves on the SLUUG board of directors.
Ideas, questions and suggestions are welcome; please contact Craig Buchek (email@example.com).
Books that are not available at the meetings may be ordered to be picked up at the next SLUUG general meeting. Contact Carl Fitch (firstname.lastname@example.org).
| Books with a red sticker
(discontinued titles and older editions)
|Books on special||-||20% off|
|All other books||-||15% off|
This month we will share random Linux tricks and tips.
Please come prepared with a couple of your favorite tips. What are your favorite options for programs such as ls, less, and vi? What environment variables do you set in your .profile? What secret settings have you found in Mozilla or GNOME gconf? What web sites have good info on using Linux? What settings can't you live without? How do you customize Linux when you build a new system?
STLLUG members are a varied bunch. We range from those just exploring the possibilities that Open Source offers, to hard-core Linux experts.
Comments, questions, and ideas for the St. Louis Linux Users Group are welcome; please send email to Tony Zafiropoulos email@example.com.
Meets the 2nd Wednesday of the month, 6:30pm to 9:00pm. Free and open to the public.
Graybar Electric Co, Inc.
11885 Lackland Rd.
St. Louis, MO 63146
Directions: Take I-270 to Page east. Take first exit (Concourse). Turn right at stop light (Lackland). Turn right at stop light into Graybar parking lot. Enter building at main entrance and sign in with security guard. Proceed down 1 level to lake level and cafateria training room.
SLUUG - St. Louis UNIX Users Group
Meets the 1st Wednesday of the month, 6:30pm to 8:30pm. Open to the public. This is where we make decisions on what topics to cover and other administration of the group. If you want to get involved, this is a good place to start. We now meet at:
#60 Ladue Estates (around back)
Ladue, MO 63141
St. Louis Linux Users Group (STLLUG) (http://www.stllinux.org)
Meets the 3rd Thursday of each month, 7:00pm to 9:00pm. The room is reserved starting at 6:00pm. (Ask a librarian to let you in if it is locked.) Members are encouraged to come early to mingle and/or give informal demos or presentations. Free and open to the public. (Formerly known as the Linux SIG.)
Indian Trails LibraryDirections: Take I-170 to Page east. Turn left at North-South. Turn left at Midland. Drive 2 blocks and turn left on Delport. The library is on your left.
8400 Delport Drive (at Midland)
St. Louis, MO 63114
St. Charles LUG (http://www.sluug.org/~stclug)
Meetings are held from 6:30pm to 9:00pm on the 4th Thursday of each month, except November and December, which will be on the 4th Monday.
This is a SIG of SLUUG, intended for all Linux users in the Western and Northern parts of the greater metro area.
JJ's restaurantDirections: I-70 to O'Fallon MO exit 217. South on Route K to Veterans Memorial Parkway (first light at top of hill). Turn right (west) and continue past the Woodlawn light about 300 feet. JJ's is on the left.
200 Fort Zumwalt Square
O'Fallon, MO 63366
Hazelwood LUG (http://www.sluug.org/~hzlug)
Generally meets the 4th Tuesday of each month, 6:30pm to 9:00pm. Free and open to the public. This is a SIG of SLUUG, intended for Linux newbies.
Prairie Commons LibraryMap: http://www.slcl.lib.mo.us/sysinfo/pc.html
915 Utz Lane (between Howdershell and Dunn)
Hazelwood, MO 63042
WARNING: These articles may express personal opinions and
SLUUG exerts no more editorial control over such content than does
a public library. Any opinions, advice,
statements, services, offers, or other information or content
expressed herein are those of the respective authors and not
necessarily supported by SLUUG. SLUUG does not guarantee the accuracy,
completeness, or usefulness of any content, nor its fitness for any
ITEC is this week: Wednesday May 12 and Thursday May 13. ITEC is a traveling IT Expo and Conference that comes to St. Louis once a year. Companies come to show off their latest products and services. The show is held at America's Center downtown. It opens at 10 am, and closes at 4 pm on Wednesday and 3 pm on Thursday.
Please sign up at the ITEC web site (http://goitec.com/live/15/events/15STL04/) for free tickets before going down to the show. Use SLUUG's code: LUUGTX.
SLUUG will be hosting a booth again this year. We're at booth #110, to the left as you enter. In addition to providing information (and advocacy) about UNIX, Linux, and Open Source, we will be selling our line of O'Reilly books. Discounts will be based on quantity of books purchased, ranging from 15% to 25%.
We're still looking for volunteers to help man the booth, and move gear in and out Tuesday afternoon and Thursday evening. If you can help, please contact Carl Fitch (firstname.lastname@example.org) ASAP.
Bill Sears of Novell spoke at last month's STLLUG meeting. He showed the full line of SuSE Linux products. Bill wrote in to report that SuSE Linux Enterprise Server 8 is now available for customer evaluation at the Novell Download Site: http://download.novell.com/.
No updates are currently offered, but customers who download now will be emailed to receive a 30-day evaluation of Red Carpet Daemon with updates for SLES 8 within the next two weeks.
[Editor's note: This is an abbreviated version of Lew's article. Lew's directions are for SuSE 9.0 Pro with KDE 3.1, but the general principals should pertain to any version of Linux, BSD, or UNIX.]
This is a simple how-to guide for installing the Nessus vulnerability scanner, server daemon, and client on SuSE Linux. The instructions do not include in depth explanations; it is assumed that you are familiar with features and benefits of Nessus and have a general working knowledge of Linux.
The installation process should be conducted using the "root" account. It is strongly suggested that your install take place on a safe non-routable network that does not have hostile traffic. Otherwise your system might be vulnerable and could easily become infected with a virus, worm, bomb, or hacked.
Nessus Application Requirements
Before installing Nessus, you will need to install all the required dependencies. On SuSE, you can do this via the YaST2 Software Install/Remove module in the Control Panel. Install the following packages:
Then run YaST Online Update to patch all installed programs.
Nessus Server Setup
If you wish to have the Nessus Server daemon automatically started when the system is booted, edit the "/etc/init.d/boot.local" file and append "nessusd -D".
It is recommended that you run nessus-update-plugins periodically to update Nessus.
SuSE provides built-in firewall protection. Vulnerability scanners such as Nessus do not normally function well with software firewalls in place. To remove the firewall:
Uninstall executable: /usr/local/sbin/uninstall-nessus
Configuration file: /usr/local/etc/nessus/nessusd.conf
Certificate Authority: /usr/local/com/nessus/CA/cacert.pem
Certificate Authority - Private: /usr/local/var/nessus/CA/cakey.pem
Nessus Server Certificate file: /usr/local/com/nessus/CA/servercert.pem
Nessus Server - Private Key file: /usr/local/var/nessus/CA/serverkey.pem
Nessus uses port 1241 to communicate
You now have a fully functioning Nessus server daemon and client installed. Nessus is now fully operational to help with your security needs.
About the Author
Lew Newlin (LNewlin@SiteRecon.com) is CTO of Information Solutions, Inc., which operates SiteRecon.com. SiteRecon specializes in security, email monitoring, and web site monitoring for Internet service providers and businesses.
For more information about sponsoring the St. Louis UNIX Users Group, contact Clarence Johnson (email@example.com).
|Linux Users Group Chairfirstname.lastname@example.org||Tony Zafiropoulos|
|Board of Directorsemail@example.com||
|Corporate Sponsorsfirstname.lastname@example.org||Clarence Johnson|
|O'Reilly Book Salesemail@example.com||Carl Fitch|
|Newsletter Editorfirstname.lastname@example.org||John House|
|Steering Committee Infoemail@example.com||Craig Buchek|
|BBS Questionsfirstname.lastname@example.org||Gary Meyer|
|Official Correspondence||SLUUG Mailing Address||
PO Box 411302
St. Louis, MO 63141