Linux Security
12/14/14
Lab 1 Assessment
1. During the install, the option to sync with a NTP (Network Time Protocol) server was checked. From a security perspective, why is it important for a system to keep accurate time?
a. The most interesting importance of NTP would be the auto key system, if your system doesn’t keep correct time a attacker who needs to change time so that a replay attack can happen could be very damaging, that is why today’s version of NTP shields against this in several ways.
2. During the install, a password has been set for the “root” user, and when is it appropriate to use this account?
a. It is highly recommended that you only use this account when there are tasks that require root privileges such as moving files or directories into or out of system directories.
3. During the install, X-Window and a Desktop Manager were installed. However, in a production environment it is recommended NOT to run the X-Windows Environment. Explain the purpose for this recommendation?
a. In a production environment hardware requirements and not to run the X-Windows Environment may sometimes vary, X-Window is intended for primarily workstation use only example personal computing on a Linux box. The X-Window was intended and developed for the network GUI only, X-Windows by itself doesn’t even have an interface.
4. What partitioning options are available when installing CentOS?
5. Why is it important to put the swap file on a separate partition from the root (/)partition?
6. What is the significance of the swap partition in a Linux system?
a. Temporary space $, its swapping information between the memory and the disk. By using SWAP partitions, server performance can be greatly improved, I recommend Swap over other partitions because even though it makes my physical RAM slower it actually works.
7. How is the passwd file used, and what fields make up its content? Explain.
a. The passwd file is used to keep to in track of every user on