Chapter 14 Study Guide 451

19.What password setting can allow encrypted passwords of up to 256 characters in length?

A.md5

B.ssh

C.shadow

D.rotation

20.What device or services can you use to protect a networked Linux system from other outside networks?

A.inetd daemon

B.Router

C.Proxy server

D.Firewall

Scenarios

1.A company wants to implement a proper password security policy for the users. In the past, the company has had problems with users using easily guessed passwords or even no password at all. Employees have left or have been terminated, yet are still able to use their accounts to access the system. What sort of policy should be set regarding the best security practices for user accounts and passwords?

2.A company’s internal Web server was recently hacked into. The company has no network protection, and the Web server was improperly configured to allow access to the root file system. What changes can you make to ensure the security of this system?

Lab Exercises

Lab 14-1 Removing Unused Inetd Services

The objective for this hands-on lab is to gain experience in altering the inetd.conf file to turn the services that you require on and off. Turning off unused services is a good security practice. You should be able to use any default Linux installation for this exercise.

1. Try to telnet and FTP to the local machine:

ftp localhost telnet localhost