sysadmin in training

To: debian-security@lists.debian.org
Subject: sysadmin in training
From: Jeffrey Chimene <jeff@systasis.co>
Date: Fri, 12 May 2023 08:10:04 -0700
Message-id: <[🔎] bae17942-6de1-264d-1421-f17fb64f8f3c@systasis.co>

Hi,

I'd like to propose a minor change tohttps://www.debian.org/doc/manuals/securing-debian-manual

While I have no argument with intrusion detection, I don't see anythingfor active response. A metaphor would be Peter Cook and Dudley Moore'sextended joke:

https://www.youtube.com/watch?v=lbnkY1tBvMU

Anyway, I'd like to propose adding a section that describes ossec. WhileI appreciate the detection aspect, I'm just a person who admins a serverfarm of 6 Linodes mostly running WordPress. It took longer than itshould have to learn about ossec. I think an entry in the guide would behelpful. Also, with DEFCON approaching, this seems an appropriate timeto start this discussion.


Cheers,
jec

Reply to:

Follow-Ups:
- Re: sysadmin in training
  - From: Jeremy Stanley <fungi@yuggoth.org>

Next by Date: Re: sysadmin in training
Next by thread: Re: sysadmin in training
Index(es):
- Date
- Thread