Practical Unix & Internet Security, 3rd Edition
| [SYMBOL] [A] [B] [C] [D] [E] [F] [G] [H] [I] [J] [K] [L] [M] [N] [O] [P] [Q] [R] [S] [T] [U] [V] [W] [X] [Y] [Z]
DAC (Discretionary Access Controls) Daemen, Joan daemon user daemons Dalheimer, Mattias K. (Running Linux) Dalton, Chris I. DARPA [See ARPA] data [See also data protection; information] backing up [See backups ] confidentiality of [See confidentiality] encryption of [See encryption] integrity of [See integrity] data bits Data Carrier Detect (DCD) data communication equipment (DCE) Data Encryption Algorithm (DEA) Data Encryption Standard [See DES] data protection 2nd [See also backups] eavesdropping local storage real-world example sanitizing media before disposal theft, from unattended terminals Data Set Ready (DSR) data spoofing data terminal equipment (DTE) Data Terminal Ready (DTR) databases [See also network authentication systems] network system date account Dawson, Terry (Running Linux) day-zero backup [See level-zero backup] daytime service 2nd dbx debugger DCD (Data Carrier Detect) DCE (data communication equipment) DCE (Distributed Computing Environment) 2nd 3rd 4th 5th 6th dd command 2nd DDoS (Distributed Denial of Service) attacks DEA (Data Encryption Algorithm) deadlock DEBUG command, SMTP debugfs command 2nd 3rd DECnet decode aliases decoy systems decryption default accounts default domain defense in depth [See multilevel security]2nd [See multilevel security] demo accounts denial of service attacks 2nd accidental automatic account lockout causes of destructive 2nd distributed (DDoS) internal inetd services logging to /dev/console causing on networks overload 2nd security checklist for syslog causing types of Denning, Dorothy E. R. (Cryptography and Data Security) Denning, Peter J. (Computers Under Attack: Intruders, Worms, and Viruses) Department of Justic (DOJ) deployment environments depository directories, FTP DES (Data Encryption Standard) 2nd example of Kerberos using key length of NIS+ weakness of des command 2nd DES Extended format The Design and Implementation of the 4.4 BSD UNIX Operating System (McKusick, Marshall Kirk; Bostic, The Design of the UNIX Operating System (Bach, Maurice) destroying media destructive denial of service attacks 2nd detectors cable tampering carbon monoxide fire alarms humidity logging alarm systems motion placement and monitoring of smoke temperature alarms water sensors /dev directory /dev/audio device /dev/console device /dev/kmem device 2nd /dev/null device /dev/random device /dev/swap device /dev/urandom device device files devices access, legal definition of back door in backup, world-readable configuring on local area network logging information about managing with SNMP modem control random number sources superuser control of Devices file df -i command dfstab file 2nd dfstab script DHCP protocol dictionary attack diff program differential backup differential cryptanalysis differential fault analysis differential power analysis differential timing analysis Diffie, Whitfield 2nd "New Directions in Cryptography" "The First Ten Years of Public-Key Cryptography" Diffie-Hellman exponential key exchange system 2nd 3rd 4th 5th 6th Digital Millennium Copyright Act (DMCA) Digital Signature Algorithm (DSA) Digital Signature Standard (DSS) 2nd digital signatures 2nd [See also signatures, data] distributed with software DSA (Digital Signature Algorithm) DSS (Digital Signature Standard) 2nd HMAC as alternative to message digest algorithms used for 2nd public key cryptography used with 2nd RSA as basis for directories 2nd 3rd [See also files] ancestor , detecting changes to CDFs (context-dependent files) current FTP depositories home security of links to mounted nested, tree structure attacks on NFS [See NFS] permissions for 2nd SGID and sticky bits on world-writable directory services [See Kerberos system LDAP NIS NIS+] dired mode, GNU Emacs Disappearing Cryptography (Wayner, Peter) disaster planning 2nd Disaster Recovery Journal discard service 2nd Discretionary Access Controls (DAC) disk drives [See also media] destructive attacks to difficulty of sanitizing filling up, as overload attack Firewire-based hidden space on logging information about partitioning partitions, backups by quotas for reserved space on write-protect switches for 2nd Distributed Computing Environment [See DCE]2nd [See DCE] Distributed Denial of Service (DDoS) attacks DMCA (Digital Millennium Copyright Act) DNS (Domain Name System) 2nd attacks on client flooding dynamic nameserver attacks nameserver cache poisoning Public Key Infrastructure (PKI) rogue servers security and 2nd security precautions for zone transfers 2nd DNS and BIND (Albitz, Paul and Liu, Cricket) DNSSEC Dobbertin, Hans documentation of break-in log books log files, hardcopy of 2nd manuals 2nd software DOJ (Department of Justice) dollar sign ($), as Unix Bourne or Korn shell prompt domain name 2nd Domain Name System [See DNS] domain service 2nd domain socket domainname command domains (NIS) dormant accounts disabling automatically disabling by changing password finding dot (.) directory 2nd dot-dot (..) directory 2nd double reverse lookup downtime, logging dpkg package management system drand48() system call Dreyfus, Suelette (Underground) drinks, effects on hardware DSA (Digital Signature Algorithm) DSR (Data Set Ready) DSS (Digital Signature Standard) 2nd DTE (data terminal equipment) DTR (Data Terminal Ready) du command due care [See best practices] dump program 2nd 3rd DUMP request dumpster diving duress code dust, effects on hardware DVD, mounted read-only dynamic DNS
|