Security Strategies in Linux Platforms and Applications, 3rd Edition

Identifying a Baseline System State

A baseline is a default system configuration. In an ideal world, you could use the gold baseline described earlier as the starting point for production systems. To that end, any new system should differ from the baseline only with respect to the new packages that may be installed for functionality, updates, and security issues. That does not reflect reality, however.

Systems deviate from a baseline in a number of ways. Log files are added. Users add personal and work files to their home directories. Fortunately, such changes affect only a limited number of directories. You should be able to limit additional changes. Some users may install a new service. However, if you have configuration control of the systems ...

Get Security Strategies in Linux Platforms and Applications, 3rd Edition now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

Security Strategies in Linux Platforms and Applications, 3rd Edition by Ric Messier, Michael Jang

Identifying a Baseline System State

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly