Practical Guide to Software Quality Management (Artech House Computing Library)

Index

[SYMBOL] [A] [B] [C] [D] [E] [F] [G] [H] [I] [J] [K] [L] [M] [N] [O] [P] [Q] [R] [S] [T] [U] [V] [W] [X] [Y] [Z] -s flag

     pfctl     pflogd -s option (syslogd) 2nd S/MIME (Secure MIME) standard 2nd

SafeFileEnvironment option (sendmail) SANS Security Policy Projectsappnd flag     behavior 2nd     kernel and     locking down files     log files and

     newsyslog and

SASL (Simple Authentication and Security Layer)     additional resources     authentication and 2nd 3rd 4th

     overview

     Postfix and 2nd

     TLS and

SASL2 option (Postfix) saslauthd daemon 2nd

SASLAUTHD option (Postfix) saslpasswd command

saslpasswd2 commandschg flag     behavior     directories and     files and 2nd

     FreeBSD and

     httpd.conf and

     kernel and

     setting on

scp (secure copy) command

scponly product

scrollback buffers

scrub section (pf.conf)

SCSI bus 2nd 3rd

SEARCH method (DAV)

secure by default approach

secure level

     locking down permissions

     securelevel -1     securelevel 0

     securelevel 1 2nd

     securelevel 2

     securelevel 3

     securelevel variable 2nd Secure MIME (S/MIME) standardSecure Sockets Layer [See SSL]

securelevel 0 securenets file 2ndsecurity [See also hardening] [See also hardening]     accountability and

     ACID and     additional resources 2nd     administration and     Apache and     applications and     audits and     availability and 2nd

     BIND and

     CIA Triad of     confidentiality and 2nd     data integrity and

     DHCP and

     djbdns and

     DNS and

     firewalls and 2nd 3rd     HTTP URL encoding and

     IDS events and     infrastructure servers 2nd

     inherent protections     jail options     as a journey     kernel and     kernel variables 2nd

     local

     log consolidation and

     logcheck.sh script

     loghosts and 2nd

     mail access and

     mailing lists

     mod_dav and

     mod_perl module and

     mod_userdir and

     multipurpose systems

     MX records and

     NAT and

     network service and

     NTP and     obscurity and 2nd

     overhead in

     physical 2nd

     Postfix

     process and principles     responding to risk     response to vulnerabilities

     risk and 2nd 3rd     root volume and     securelevel and     Sendmail and 2nd

     sensors and     SMTP and     spider architecture and     thttpd and     web servers and     webmail and     workgroup servers

     workstations

     XFree86 and security facility (FreeBSD) 2nd Security Focus web site 2nd

security script (OpenBSD)

security-announce list (OpenBSD)

security-through-obscurity

security.bsd.see_other_gids variable security.bsd.see_other_uids variable

security.jail.socket_unixiproute_only variable security.jail.sysvipc_allowed variable

SecurityFocus mailing lists 2nd sed command SELECT statement (MySQL) Self-Certifying File System (SFS)Sender Policy Framework [See SPF]

Sendmail mailer

     additional resources

     attacks and

     authentication

     blocking unwanted mail

     configuring 2nd

     encryption

     limiting DoS attacks

     overview

     syslogd and

sendmail security profile (FreeBSD)

sendmail service

     forking processes and

     FreeBSD and     ktrace command and

     OpenBSD and

     security and

sendmail-sasl port (FreeBSD)

sendmail.cf file 2nd sendmail.mc filesensors

     ACID and     attacks and     firewalls and     hardware

     NIDS and 2nd     security and     Snort and 2nd 3rd server-parsed handler server-side-include (SSI) 2nd server.crt file 2nd server.key file 2nd 3rd

SERVICEDIR environment variable

services     availability of     determining conditions for starting

     infrastructure servers and

     listening

     multipurpose systems and

     restarting key     segregating 2nd

     turning off unnecessary 2nd seteuid command

setfacl command 2ndsetgid command     changing group owner     nosuid option (mount)     security and

     sendmail binary and

     sysctl variables and

setreuid command

setuid command

     BIND and

     cgiwrap and

     danger of

     mod_suexec and

     nosuid option (mount)

     removing

     root access and

     security and

     sendmail binary and

     sysctl variables and setup option (ipfw)

SFS (Self-Certifying File System)

sgid command

SHA-1 hashing algorithm

shadow passwords 2nd shell accounts SHELL environment variable

show command (ipfw) 2ndSimple Authentication and Security Layer [See SASL] simple firewall_type (IPFW)Simple Mail Transfer Protocol [See SMTP]

size field (newsyslog) -skip-keypress flag (Rootkit Hunter) skipto action (ipfw) smrsh commandSMTP (Simple Mail Transfer Protocol)     additional resources     authentication and 2nd

     commands

     design problems     encryption and     envelope and header

     ETRN command

     external mail servers and

     milters and

     name resolution and     port accessibility

     restricting unneeded commands     security and

     Sendmail and     webmail and SMTP AUTH 2nd smtpd bannersmtpd daemon (Postfix)

     chroot and 2nd

     error thresholds

     root access and

     spawning

smtpd_error_sleep_time variable (Postfix)

smtpd_helo_restrictions variable (Postfix)

smtpd_recipient_limit variable (Postfix)

smtpd_recipient_restrictions variable (Postfix) 2nd 3rd

smtpd_sasl_auth_enable option (Postfix)

smtpd_soft_error_limit variable (Postfix)

Snort 2nd

SOA (start of authority) record 2nd

sockets

     jails and     logging 2nd

     syslogd and 2nd

sockstat command (FreeBSD)

software [See also applications] [See also applications]

     buffer overflows 2nd     change control     chroot and

     format string error     identifying problems in 2nd     installing     installing in jail

     protecting     race conditions     SQL injection and 2nd     web server choices     web-based attacks Solaris operating system Sourcefire

spam

     additional resources     backup MX servers and     DNS and

     HELO request and

     increase in

     open relay and

     SPF and 2nd     stopping

     as unwanted mail Spam Cop

SpamAssassin     additional resources     content filtering with     internal mail servers and     mail relays and

     milter-regex file and

     Postfix and

     SPF and

SpamCop

spanning tree protocol

SPF (Sender Policy Framework)

     additional resources

     functionality

     overview 2nd

SPF option (Postfix)

spider architecture

spoofed packets

spoofing

     DNS     false positives and

     IP addresses

     jail and

     zone transfers and

spoofing attacks spyware SQL injection 2nd 3rd 4th

SquirrelMail 2nd src distribution (FreeBSD)SSH     cryptography and

     NFS over     Protocol option (sshd_config)     schg flag andssh (secure shell) service     backups and 2nd     connecting using 2nd 3rd     CVS repository and

     file distribution over 2nd

     zone transfers and ssh-add command ssh-agent command 2nd

ssh-keygen command 2nd

sshd (secure shell daemon)

     access control and

     activating     Banner configuration option

     enabling     FreeBSD and

     inewtd and     locking down     OpenBSD and     security and     Snort and

sshd security profile (FreeBSD)

sshd_config file 2nd 3rd 4th

SSI (server-side-include) 2nd

SSL (Secure Sockets Layer)

     additional resources

     Apache and

     authentication and

     certificates and 2nd 3rd

     CPU usage

     cryptography and

     DAV and

     enabling

     private keys and

     SSL/TLS connection 2nd     starting servers and

     thttpd and

     TLS and 2nd

     web servers and

SSLCipherSuite directive -STABLE branch (FreeBSD) 2nd 3rd stack protection

staff group start of authority (SOA) record 2nd state keyword (pfctl) stream4 preprocessor

StrictModes option (sshd_config)strong passwords     creating     FreeBSD and     mail access and     OpenBSD and     recommendations

stunnel command 2nd

su command     privileged access     sudo package and

     super-user privileges

     wheel group and 2nd 3rd

SU_CMD option (make.conf)

submit.cf file SUDO option (mk.conf)

sudo package     apachectl

     configuring 2nd 3rd     creating devices     installing     privileged access     privileged commands

     restarting key service

     Sendmail and

     su command and

     super-user privileges

     wheel group and

sudoers configuration file

     creating customized

     editing 2nd

     revoking privileges

     root access and

suexec module (Apache) 2nd 3rd

SUEXEC_CALLER option (Apache) 2nd

SUEXEC_DOCROOT option (Apache) 2nd

SUEXEC_GIDMIN option (Apache) 2nd SUEXEC_LOGFILE option (Apache) 2nd

SUEXEC_SAFEPATH option (Apache) 2nd

SUEXEC_UIDMIN option (Apache) 2nd

SUEXEC_UMASK option (Apache) 2nd

SUEXEC_USERDIR option (Apache) 2nd suiddir option (mount) sunlnk flag 2nd

SunONE swatch 2nd 3rd 4th swatch_oldrc2newrc binary switches 2nd

symmetric keys 2ndSYN packets     dropping     firewalls and     ipfw and 2nd     network scans synchronization 2nd

sysctl command 2nd 3rd

sysctl variables 2nd 3rd sysctl.conf file 2nd sysinstall command 2nd 3rd

syslog facility

     actions

     functionality

     IPFW and 2nd     OpenBSD and

Syslog relay syslog system call

syslog-ng 2nd 3rdsyslog.conf file     configuring     debugging and     keeping smaller logs

     logs and

     program/hostname matching

     syslog facilities

     syslog levels

syslogd (syslog daemon)

     actions

     configuring

     debugging

     drawbacks of

     FreeBSD and

     as monolithic

     OpenBSD and

     replacements for

     running     UDP datagrams and

syslogd_flags configuration entry

syslogd_flags variable (rc.conf)

syslogd_flags variable (rc.conf.local)

system administrators [See administrators]system logging [See logging] system no unlink flag (sunlnk) 2nd

system time     FreeBSD and     NTP and     restriction on

     securelevel and System V IPC 2ndsystems     administration considerations     monitoring health 2nd     patching and     security and

     as Syslog relay