DOCSLIB.ORG

Maintenance Branches

Total Page:16

File Type:pdf, Size:1020Kb

Download full-text PDF Read full-text
Maintenance Branches intelmq Release 3.0.2 IntelMQ Community Sep 10, 2021 CONTENTS 1 User guide 3 2 Connecting with other systems 185 3 Getting involved 199 4 Licence 243 5 Funded by 245 6 Indices and tables 247 Index 249 i ii intelmq, Release 3.0.2 IntelMQ is a solution for IT security teams (CERTs & CSIRTs, SOCs abuse departments, etc.) for collecting and processing security feeds (such as log files) using a message queuing protocol. It’s a community driven initiative called IHAP (Incident Handling Automation Project) which was conceptually designed by European CERTs/CSIRTs during several InfoSec events. Its main goal is to give to incident responders an easy way to collect & process threat intelligence thus improving the incident handling processes of CERTs. CONTENTS 1 intelmq, Release 3.0.2 2 CONTENTS CHAPTER ONE USER GUIDE 1.1 Introduction 1.1.1 About IntelMQ is a solution for IT security teams (CERTs & CSIRTs, SOCs abuse departments, etc.) for collecting and processing security feeds (such as log files) using a message queuing protocol. It’s a community driven initiative called IHAP (Incident Handling Automation Project) which was conceptually designed by European CERTs/CSIRTs during several InfoSec events. Its main goal is to give to incident responders an easy way to collect & process threat intelligence thus improving the incident handling processes of CERTs. Incident Handling Automation Project • URL: <http://www.enisa.europa.eu/activities/cert/support/incident-handling-automation> • Mailing-list: <[email protected]> Several pieces of software are evolved around IntelMQ. For an overview, look at the IntelMQ Ecosystem. IntelMQ can be used for - automated incident handling - situational awareness - automated notifications - as data collector for other tools - etc. IntelMQ’s design was influenced by AbuseHelper however it was re-written from scratch and aims at: • Reducing the complexity of system administration • Reducing the complexity of writing new bots for new data feeds • Reducing the probability of events lost in all process with persistence functionality (even system crash) • Use and improve the existing Data Harmonization Ontology • Use JSON format for all messages • Provide easy way to store data into Log Collectors like ElasticSearch, Splunk, databases (such as PostgreSQL) • Provide easy way to create your own black-lists • Provide easy communication with other systems via HTTP RESTful API It follows the following basic meta-guidelines: • Don’t break simplicity - KISS • Keep it open source - forever • Strive for perfection while keeping a deadline • Reduce complexity/avoid feature bloat • Embrace unit testing 3 intelmq, Release 3.0.2 • Code readability: test with inexperienced programmers • Communicate clearly 1.1.2 Usage Various approaches of installing intelmq are described in Installation. The Configuration and Management gives an overview how a intelmq installation is set up and how to configure and maintain the setup. There is also a list of available Feeds as well as a detailed description of the different Bots intelmq brings with it. If you know additional feeds and how to parse them, please contribute your code or your configuration (by issues or the mailing lists). For support questions please use the IntelMQ Users Mailinglist. IntelMQ Manager Check out this graphical tool to easily manage an IntelMQ system. 1.1.3 Contribute • Subscribe to the IntelMQ Developers Mailinglist • IRC: server: irc.freenode.net, channel: #intelmq • Via GitHub issues • Via Pull requests (please have a look at the Developers Guide first) 1.2 Hardware Requirements Do you ask yourself how much RAM do you need to give your new IntelMQ virtual machine? The honest answer is simple and pointless: It depends ;) Contents • Hardware Requirements – IntelMQ and the messaging queue (broker) ∗ Disk space ∗ Background on memory – Additional components ∗ EventDB ∗ IntelMQ cb mailgen 4 Chapter 1. User guide intelmq, Release 3.0.2 1.2.1 IntelMQ and the messaging queue (broker) IntelMQ uses a messaging queue to move the messages between the bots. All bot instances can only process one message at a time, therefore all other messages need to wait in the queue. As not all bots are equally fast, the messages will naturally “queue up” before the slower ones. Further, parsers produce many events with just one message (the report) as input. The following estimations assume Redis as messaging broker which is the default for IntelMQ. When RabbitMQ is used, the required resources will differ, and RabbitMQ can handle system overload and therefore a shortage of memory. As Redis stores all data in memory, the data which is processed at any point in time must fit there, including overheads. Please note that IntelMQ does neither store nor cache any input data. These estimates therefore only relate to the processing step, not the storage. For a minimal system, these requirements suffice: • 4 GB of RAM • 2 CPUs • 10 GB disk size Depending on your data input, you will need the twentiethfold of the input data size as memory for processing. When using Redis persistence, you will additionally need twice as much memory for Redis. Disk space Disk space is only relevant if you save your data to a file, which is not recommended for production setups, andonly useful for testing and evaluation. Do not forget to rotate your logs or use syslog, especially if you use the logging level “DEBUG”. logrotate is in use by default for all installation with deb/rpm packages. When other means of installation are used (pip, manual), configure log rotation manually. See Logging. Background on memory For experimentation, we used multiple Shadowserver Poodle reports for demonstration purpose, totaling in 120 MB of data. All numbers are estimates and are rounded. In memory, the report data requires 160 MB. After parsing, the memory usage increases to 850 MB in total, as every data line is stored as JSON, with additional information plus the original data encoded in Base 64. The further processing steps depend on the configuration, but you can estimate that caches (for lookups and deduplication) and other added information cause an additional size increase of about 2x. Once a dataset finished processing in IntelMQ, it is no longer stored in memory. Therefore, the memory is only needed to catch high load. The above numbers result in a factor of 14 for input data size vs. memory required by Redis. Assuming some overhead and memory for the bots’ processes, a factor of 20 seems sensible. To reduce the amount of required memory and disk size, you can optionally remove the raw data field, see Removing raw data for higher performance and less space usage in the FAQ. 1.2. Hardware Requirements 5 intelmq, Release 3.0.2 1.2.2 Additional components If some of the optional components of the IntelMQ Ecosystem are in use, they can add additional hardware requirements. Those components do not add relevant requirements: • IntelMQ API: It is just an API for intelmqctl. • IntelMQ Manager: Only contains static files served by the webserver. • IntelMQ Webinput CSV: Just a webinterface to insert data. Requires the amount of processed data to fit in memory, see above. • Stats Portal: The aggregation step and Graphana require some resources, but no exact numbers are known. • Malware Name Mapping • Docker: The docker layer adds only minimal hardware requirements. EventDB When storing data in databases (such as MongoDB, PostgreSQL, ElasticSearch), it is recommended to do this on separate machines for operational reasons. Using a different machine results in a separation of stream processing to data storage and allows for a specialized system optimization for both use-cases. IntelMQ cb mailgen While the Fody backend and frontend do not have significant requirements, the RIPE import tool of the certbund-contact requires about 8 GB of memory as of March 2021. 1.3 Installation Contents • Installation – Requirements – Install Dependencies ∗ Ubuntu / Debian ∗ CentOS 7 / RHEL 7 ∗ CentOS 8 ∗ openSUSE 15.2 / 15.3 ∗ Docker (beta) – Installation ∗ Native Packages ∗ PyPi ∗ Docker with docker-compose (recommended) ∗ Docker without docker-compose 6 Chapter 1. User guide intelmq, Release 3.0.2 ∗ Additional Information Please report any errors you encounter at https://github.com/certtools/intelmq/issues For upgrade instructions, see Upgrade instructions. For setting up a development environment see the Developers Guide section Development Environment. For testing pre-releases see also the Developers Guide section Testing Pre- releases. 1.3.1 Requirements The following instructions assume the following requirements. Python versions >= 3.6 are supported. Supported and recommended operating systems are: • CentOS 7 and 8 • Debian 10 Buster and 11 Bullseye • openSUSE Leap 15.2, 15.13 • Ubuntu: 18.04, 20.04 • Docker Engine: 18.x and higher Other distributions which are (most probably) supported include RHEL, Fedora, openSUSE Tumbleweed and FreeBSD 12. A short guide on hardware requirements can be found on the page Hardware Requirements. 1.3.2 Install Dependencies If you are using native packages, you skip this section as all dependencies are installed automatically. Ubuntu / Debian apt install python3-pip python3-dnspython python3-psutil python3-redis python3-requests ,!python3-termstyle python3-tz python3-dateutil apt install redis-server Optional dependencies: apt install bash-completion jq apt install python3-pymongo python3-psycopg2 CentOS 7 / RHEL 7 yum install epel-release yum install python36 python36-devel python36-requests yum install gcc gcc-c++ yum install redis 1.3. Installation 7 intelmq, Release 3.0.2 CentOS 8 dnf install epel-release dnf install python3-dateutil python3-dns python3-pip python3-psutil python3-pytz python3- ,!redis python3-requests redis Optional dependencies: dnf install bash-completion jq dnf install python3-psycopg2 python3-pymongo openSUSE 15.2 / 15.3 zypper install python3-dateutil python3-dnspython python3-psutil python3-pytz python3- ,!redis python3-requests python3-python-termstyle zypper install redis Optional dependencies: zypper in bash-completion jq zypper in python3-psycopg2 python3-pymongo Docker (beta) ATTENTION Currently you can’t manage your botnet via intelmqctl documentation.
Load more

Recommended publications
  • Ubuntu Server Guide Ubuntu Server Guide Copyright © 2016 Contributors to the Document
    Ubuntu Server Guide Ubuntu Server Guide Copyright © 2016 Contributors to the document Abstract Welcome to the Ubuntu Server Guide! It contains information on how to install and configure various server applications on your Ubuntu system to fit your needs. It is a step-by-step, task-oriented guide for configuring and customizing your system. Credits and License This document is maintained by the Ubuntu documentation team (https://wiki.ubuntu.com/DocumentationTeam). A list of contributors is below. This document is made available under the Creative Commons ShareAlike 3.0 License (CC-BY-SA). You are free to modify, extend, and improve the Ubuntu documentation source code under the terms of this license. All derivative works must be released under this license. This documentation is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE AS DESCRIBED IN THE DISCLAIMER. A copy of the license is available here: Creative Commons ShareAlike License1. Contributors to this document are: • Members of the Ubuntu Documentation Project2 • Members of the Ubuntu Server Team3 • Contributors to the Community Help Wiki4 • Other contributors can be found in the revision history of the serverguide5 and ubuntu-docs6 bzr branches available on Launchpad. 1 https://creativecommons.org/licenses/by-sa/3.0/ 2 https://launchpad.net/~ubuntu-core-doc 3 https://launchpad.net/~ubuntu-server 4 https://help.ubuntu.com/community/ 5 https://bazaar.launchpad.net/~ubuntu-core-doc/serverguide/trunk/changes 6 https://bazaar.launchpad.net/~ubuntu-core-doc/ubuntu-docs/trunk/changes Table of Contents 1.
    [Show full text]
  • Getting Started with Ubuntu and Kubuntu
    Getting Started With Ubuntu and Kubuntu IN THIS PART Chapter 1 The Ubuntu Linux Project Chapter 2 Installing Ubuntu and Kubuntu Chapter 3 Installing Ubuntu and Kubuntu on Special-Purpose Systems COPYRIGHTED MATERIAL 94208c01.indd 1 3/16/09 11:43:23 PM 94208c01.indd 2 3/16/09 11:43:24 PM The Ubuntu Linux Project ersonal computers and their operating systems have come a long way since the late 1970s, when the first home computer hit the market. At IN THIS cHAPTER that time, you could only toggle in a program by flipping switches on the P Introducing Ubuntu Linux front of the machine, and the machine could then run that program and only that program until you manually loaded another, at which time the first program Choosing Ubuntu was kicked off the system. Today’s personal computers provide powerful graph- ics and a rich user interface that make it easy to select and run a wide variety of Reviewing hardware and software concurrently. software requirements The first home computer users were a community of interested people who just Using Ubuntu CDs wanted to do something with these early machines. They formed computer clubs and published newsletters to share their interests and knowledge ​— ​and often the Getting help with Ubuntu Linux software that they wrote for and used on their machines. Sensing opportunities and a growing market, thousands of computer companies sprang up to write and Getting more information sell specific applications for the computer systems of the day. This software ranged about Ubuntu from applications such as word processors, spreadsheets, and games to operating systems that made it easier to manage, load, and execute different programs.
    [Show full text]
  • Post-Hearing Comments on Exemption to Prohibition On
    1 UNITED STATES COPYRIGHT OFFICE Rulemaking on Exemptions from Prohibition on Circumvention of Technological Measures that Control Access to Copyrighted Works Docket No. RM 2002-4 RESPONSE TO WRITTEN QUESTIONS OF JUNE 5, 2003 of N2H2, INC., 8e6 Technologies, Bsafe Online Submitted by: David Burt June 30, 2003 N2H2, Inc. 900 4th Avenue, Suite 3600 Seattle, WA 98164 Tel: (206) 982-1130; Fax: (509) 271-4226 Email: [email protected] 2 The Question Posed by the Copyright Office 3 Problems with Narrowing the Exemption to Exclude "Security Suites" 5 First Amendment Concerns Expressed by Proponents are Misplaced 8 Concerns that CIPA Requires Schools and Libraries to Use "Closed Lists" are Misplaced 9 Opponents Do Not Believe the Record Justifies an Exemption 11 The Threats Posed by the Exemption are Real 18 Conclusion 19 Footnotes 20 3 The Question Posed by the Copyright Office On June 5th, 2003, the Copyright Office asked the opponents of the proposed exemption for "Compilations consisting of lists of websites blocked by filtering software applications" for our response to the following: Please clarify, as specifically as possible, the types of applications you believe should or should not be subject to an exception for the circumvention of access controls on filtering software lists, if such an exception is recommended. Please provide any documentation and/or citations that will support any of the factual assertions you make in answering these questions. The opponents of the exemption do not believe any exemption is justified because there is no supporting record to justify it. The opponents further believe that a narrowed exemption designed to exclude "security suite" applications that include lists of blocked websites would unfairly render the databases of some vendors of lists of blocked websites with protection and others without on an arbitrary basis.
    [Show full text]
  • 1. Dansguardian Nedir?
    Gökhan ALKAN gokhan [at] enderunix [dot] org EnderUNIX Geliştirici http://www.enderunix.org Sürüm : 1.0 Tarih : 28.03.2006 Makalenin en yeni versiyonu http://www.enderunix.org/docs/dansguardian.pdf adresinde elde edilebilir. 1. Dansguardian Nedir?..........................................................................................................1 2. Dansguardian Nasıl Çalışır?............................................................................................... 1 3. Dansguardian Yapılandırması Ve Çalıştırılması................................................................ 2 4. Dansguardian Filtreleme İçin Gerekli Ayar Dosyaları ...................................................... 3 5. Dansguardian İle Filtre Gruplarının Oluşturulması ........................................................... 6 6. Dansguardian Çalıştırılması ............................................................................................... 7 7. Dansguardian Log Takibi................................................................................................... 8 1. Dansguardian Nedir? Dansguardian Linux , FreeBSD ,OpenBSD , NetBSD , Mac OS X ve Solaris üzerinde çalışan web içerik filtreleme (http trafiğini filtreleme ) yazılımıdır. Domain , kullanıcı ve ip bazlı filtreleme yeteneklerine sahip bir yazılım olan dansguardian’ın ana sayfasına 2. Dansguardian Nasıl Çalışır? Dansguardian istemci internet tarayıcısı ile Proxy arasında bulunur ve aradaki trafik üzerinde gerekli işlemleri yapar. İstemci tarayıcısından çıkan web istekleri dansguardin’a
    [Show full text]
  • Free and Open Source Software, Open Data, and Open Standards in the Caribbean: Situation Review and Recommendations August 2013
    United Nations Information for All Programme Cultural Organization Free and Open Source Software, Open Data, and Open Standards in the Caribbean: Situation Review and Recommendations August 2013 Prepared by: Dr Lora Woodall Lumine Consulting Inc. Ms Michele Marius I ICT Pulse Published in 2013 by the United Nations Educational, Scientific and Cultural Organization, 7, place de Fontenoy, 75352 Paris 07 SP, France [Intergovernmental Information for All Programme (IFAP)] © UNESCO 2013 This publication is available in Open Access under the Attribution-ShareAlike 3.0 IGO (CC- BY-SA 3.0 IGO) license (http://creativecommons.org/licenses/by-sa/3.0/igo/). By using the content of this publication, the users accept to be bound by the terms of use of the UNESCO Open Access Repository (http://www.unesco.org/open-access/terms-use-ccbysa-en). The designations employed and the presentation of material throughout this publication do not imply the expression of any opinion whatsoever on the part of UNESCO concerning the legal status of any country, territory, city or area or of its authorities, or concerning the delimitation of its frontiers or boundaries. The ideas and opinions expressed in this publication are those of the authors; they are not necessarily those of UNESCO and do not commit the Organization. Cover photo: stock.xchange (http://www.sxc.hu/txt/license.html) Shutterstock (http://www.shutterstock.com/licensing.mhtml) Graphic design: Sugar and Spice Design Cover design: Sugar and Spice Design Illustrations: Dr Lora Woodall, Lumine Consulting
    [Show full text]
  • Tools for Systems Admins
    Tools for systems admins Thanks to all who attended. My goal will be to get this data into the http://www.missiontech.info wiki in the future. Remote control ssh - Builtin to Unix, added to Win via cygwin or directly http://synergy2.sourceforge.net/ - control 2 systems with 1 kb/mouse, this is different than a KVM pc/anywhere - commercial netop (commercial) Terminal Services (mstsc /console) Remote Assistance (builtin to windows) rdesktop/xrdp - http://sourceforge.net/projects/xrdp bomgar.com (Free for missions) radmin.com (commercial) Monitoring Syslog-ng – consolidate all your windows and unix log data http://sourceforge.net/projects/net-snmp - expose your (monitoring) http://www.nagios.org (alerting) http://www.jffnms.com (graphing snmp) Cacti (graphing) http://cricket.sourceforge.net/ (custom graphing) Zabbix ZenOss Pandora NT/Domain mgt Hyena (Commercial) wpkg samba ADmodify (bulk adds/changes to AD) Desktop Management Landesk – inventory, program management Policy Management – NT ** Altiris Windows Software Update Services Kaseya (Audit, scripting, Ticketing, patch mgt, remote control) - commercial Belarc Advisor Everest (older home/free edition) Unix http://www.centos.org/ - The popular redhat enterprise server in a free download http://freshmeat.net/ - freshmeat maintains the Web's largest index of Unix and cross-platform open source software WebMin – admin many/most unix utils via http Database MySQL Phpmyadmin – admin mysql via http Web/ Content Management drupal Joomla Plone (Pyhton Based) Wordpress (blog software, but can
    [Show full text]
  • Open Source Filtering
    \U,VlMVl IS ~, Public Library REPORT TO THE LIBRARY BOARD MEETING DATE: NOVEMBER 19, 2008 Session: Public Subject: Internet Service Research Report: Open Source Filtering Prepared By: Margaret Mitchell, Tom Travers, David Mitchell Presented By: Tom Travers, Margaret Mitchell Purpose of Report: For Receipt and Information Only 0' Recommendation: It is recommended that this report, including Appendices 1 and 2 be received. BACKGROUND & REVIEW At its June 2008 meeting, the Library Board received the Public Computer Use and Internet Access Policy Update (L08j33.1). Following discussion, it was moved that staff provide the Library Board with information about "open source filtering", including resource and cost requirements. This information is provided in • Appendix 1: Report on Open Source Filtering • Appendix 2: Open Source Feature Comparison List Report to Library Board Page 1 APPENDIX 1: REPORT ON OPEN SOURCE FILTERING Prepared by: David Mitchell, Tom Travers DEFINITIONS Open Source software is a development methodology which provides access to a product's source code and design. It is made freely available through a number of licensing models. Closed Source or proprietary software is computer software on which the producer has set restrictions on use, private modification, copying, or republishing. The internal mechanisms of how the product works are not available to the user unless the software developer chooses to do so. PRODUCTS REVIEWED Two open source products were selected for review. These products were compared to the existing Netsweeper product currently in use at London Public Library (LPL). These products were chosen for review because of: • Existing implementation (NetSweeper) • Mature, open source product (DansGuardian) • Commercial implementation of a mature, open source product (SmoothGuardian).
    [Show full text]
  • Administrator's Guide
    SmoothWall Version 1 Express Administrator’s Guide SmoothWall Express, Administrator’s Guide, SmoothWall Limited, July 2007 Trademark and Copyright Notices SmoothWall is a registered trademark of SmoothWall Limited. This manual is the copyright of SmoothWall Limited and is not currently distributed under an open source style licence. Any portions of this or other manuals and documentation that were not written by SmoothWall Limited will be acknowledged to the original author by way of a copyright/licensing statement within the text. You may not modify the manual nor use any part of within any other document, publication, web page or computer software without the express permission of SmoothWall Limited. These restrictions are necessary to protect the legitimate commercial interests of SmoothWall Limited. Unless specifically stated otherwise, all program code within SmoothWall Express is the copyright of the original author, i.e. the person who wrote the code. Linux is a registered trademark of Linus Torvalds. Snort is a registered trademark of Sourcefire INC. DansGuardian is a registered trademark of Daniel Barron. Microsoft, Internet Explorer, Window 95, Windows 98, Windows NT, Windows 2000 and Windows XP are either registered trademarks or trademarks of Microsoft Corporation in the United States and/or other countries. Netscape is a registered trademark of Netscape Communications Corporation in the United States and other countries. Apple and Mac are registered trademarks of Apple Computer Inc. Intel is a registered trademark of Intel Corporation. Core is a trademark of Intel Corporation. All other products, services, companies, events and publications mentioned in this document, associated documents and in SmoothWall Limited software may be trademarks, registered trademarks or servicemarks of their respective owners in the US or other countries.
    [Show full text]
  • Servidor De Seguridad Perimetral II
    Servidor de seguridad perimetral II Por. Daniel Vazart Proxy + filtro de contenidos + estadísticas ● Squid (http://www.squid-cache.org/): Squid es un Servidor Intermediario (Proxy) de alto desempeño que se ha venido desarrollando desde hace varios años y es hoy en día un muy popular y ampliamente utilizado entre los sistemas operativos como GNU/Linux y derivados de Unix®. Es muy confiable, robusto y versátil y se distribuye bajo los términos de la Licencia Pública General GNU (GNU/GPL). Proxy + filtro de contenidos + estadísticas ● Dansguardian (http://dansguardian.org/): Dansguardian es un Proxy con filtro de contenidos para sistemas Unix como: Linux, FreeBSD, OpenBSD, NetBSD, Mac OS X, HP-UX y Solaris que pueden correr Squid como WEB Proxy. Dansguardian realiza el filtrado por diferentes métodos como el filtrado de URL y nombres de dominio, filtrado de frases en el contenido de una pagina, filtrado por PICS, filtro por tipos de archivos y filtros por POST. El filtrado de frases en el contenido chequea las paginas en busca de palabras obscenas, pornográficas y otras no deseadas. El filtrado de POSTS permite bloquear o limitar la subida de archivos por Internet. El filtro de URL y de nombres de dominio, permite manejar grandes listas y es considerablemente mas rápido que SquidGuard. Proxy + filtro de contenidos + estadísticas ● SARG (http://sarg.sourceforge.net): Es un analizador de logs para Squid que genera reportes WEB sobre la navegación a través del proxy. Requerimientos del sistema ● Dansguardian requiere un mínimo de 150 MHz de procesador y 32 MB de memoria RAM por cada 50 usuarios concurrentes.
    [Show full text]
  • Open Source Software Adoption in the Polish City of Gdańsk
    Open Source Software Adoption in the Polish City of Gdańsk The Polish city of Gdańsk adopted open source software within its city council administration. At the open source seminar Business Management Methods and IT Investments, Wieslaw Patrzek, representative of the president of Gdańsk and responsible for information technology affairs in the city, presented the implementation of open source based services at the city council of Gdańsk. Introduction Gdańsk is the Polish maritime capital with the population nearing half a million. It is a large centre of economic life, science, culture, and a popular tourist destination. The Polish city is using RISC HP servers, Microsoft Windows and HP-UX as proprietary software based operating systems and Oracle database applications for its main IT systems. Geographic information systems from Bentley and ESRI are used by the city. Gdańsk has adopted numerous open source software applications. The Linux distribution RedHat as well as the office suites OpenOffice.org and StarOffice were implemented by the city. MySQL and PostgreSQL are used for database services. PGP technology allows Gdańsk to encrypt e-mails, to secure files or disk volumes. Apache was integrated by the IT employees as web server. Migration Process Mail server In 2001, the administration migrated its mail services from MS Exchange running on Windows NT to a RedHat Linux system including the mail server Postfix. According to the presentation of Wieslaw Patrzek, the adoption of Postfix brought with it various advantages, e.g. low costs, operation efficiency, security and stability and support for thousands of user accounts. Web server In 2002, the Microsoft Windows NT Internet Information Server was replaced by the Apache web server running on RedHat Linux.
    [Show full text]
  • Dansguardian
    Michigan Library Consortium Annual Meeting Lansing, Michigan October 3rd 2008 DansGuardian Open Source Web Filtering John Rucker Branch District Library 1 Hi, I!m John Rucker, the systems administrator, and recently assistant director, of the Branch District library in Coldwater. We!re a rural library system of 6 locations across Branch county, which is straight down I-69 from here on the border with Indiana. CENSORED 2 When I started at Branch District Library a little over five years ago, I was fresh out of university and full of idealism. So I was both surprised and disappointed to learn that we censored our patrons Internet access... “Filtered” :-) 3 ...I mean, “Filtered”. We had covered the issues relating Internet filtering in library school, of course, but I guess I just really never thought about having to deal with filtering in real life. Five years later, and a parent myself now, I'm no less disappointed that we censor the Internet, but I do understand why we have to, like it or not. And, basically, we have to because It!s The Law. As a public library in MIchigan which receives Universal Service Fund discounts, Branch District Library has a double mandate to use some sort of mechanism to prevent minors from viewing certain kinds of content. Relevant Legislation • Children’s Internet Protection Act !CIPA" • Applies to public libraries receiving USF discounts for computer or Internet access • Requires a “technology protection measure” • Concerned with visual materials • Must filter sta# and public access computers 4 The first is the Children!s Internet Protection Act (CIPA).
    [Show full text]
  • Ubuntu Server Linux
    Ubuntu Linux Server Ubuntu Linux Server Edition Quick & Comprehensive Overview Joseph Guarino Owner/Sr. Consultant Evolutionary IT http://www.evolutionaryit.com Copyright © Evolutionary IT 2008 1 Who am I? Joseph Guarino Working in IT for last 15 years systems, network, security admin, technical marketing, project management, IT management, etc. Full time IT consultant with my own firm Evolutionary IT CISSP, LPIC, MCSE, PMP www.evolutionaryit.com Copyright © Evolutionary IT 2008 2 ? How many of you are familiar with Ubuntu desktop in some way? Ubuntu server? Copyright © Evolutionary IT 2008 3 Overview FOSS – A brief Linux focused history Ubuntu server and overview Ubuntu support - support options are supernumerary. Landscape management suite. Ubuntu enterprise integration. Copyright © Evolutionary IT 2008 4 FOSS Licenses and abbreviated history Copyright © Evolutionary IT 2008 5 What is FOSS/FLOSS? ● Free and Open Source Software ● FLOSS or Free/Libre/Open-Source Software. ● Libre is used to clarify the ambiguity of the word free in English. ● Alternative term to describe software spectrum from free to open. Copyright © Evolutionary IT 2008 6 Dental Hygiene? Copyright © Evolutionary IT 2008 7 What is FOSS? ● FOSS (Free and Open Source Software) is a software licensing model that allows anyone the liberty to use, extend and distribute the software as they see fit. ● Represents a spectrum of licenses. ● FOSS is unique as well in that it produces innovation quickly by the very concept of open, cooperative, collaborative sharing and development. ● Commercial software is much more restrictive. Copyright © Evolutionary IT 2008 8 FOSS vs. Commercial ● Licensed with very specific rights associated with its use, modification, distribution and use that are not commonly available to a user via commercial “closed” software.
    [Show full text]