Redhat Satellite 5: How to Clone Security Errata to a Software Channel. First check to see if the errata is available to your local satellite server. To accomplish this log into your organizations satellite server and click on the "Errata" tab. Then on the left side of the page click on "Advanced Search".
rhel
Enabling Remote Command Execution in Redhat Satellite
As many of you know, a very useful feature of Redhat Satellite is the ability to execute remote commands on a set of servers. You pick a set of servers and plug in your command and schedule the job. Most of the time these remote commands run just fine, however they can error out if the server is not configured to allow remote command execution. Let's discuss how to fix this. If remote command execution is not allowed, you will probably see an error similar to those shown below,
RHEL6: Cool PAM Tricks – Logging Terminal Keystokes
This is a neat and very useful trick that I learned today. Lets say that you want to be able to monitor and log all keystrokes that are typed as root. This is particularly useful as normally you can only log when a user uses sudo to run a command. If the user has the abilty to become root however, then they have effectively eluded yourattempts to track their activity. Like Thomas Magnum shaking a tail, they are free to scoot around your island with the top down.
Mastering Auditd: A Guide to Linux Auditing
Auditd is the userland piece of the RHEL audit tool suite. When its up and running, audit messages sent by the kenel will be send to log files that you have configured. By default, only a small and limited number of messages will be picked up by Auditd; these are mostly messages related to authentication and authorization.
RHEL6: Using Advanced Log File Filtering in Rsyslog
So by default when you forward logs to a syslog/rsyslog server all the logs end up in the same file (ususally configured to go to the messages file). Sometimes one may prefer to forward logs from a particular server to a separate logfile. I know for a fact that my sometimes friends in our info-sec group prefers this setup.
Disabling Ctrl+Alt+Delete in RHEL 6
Let me start off by saying that I am not a fan of disabling ctrl+alt+delete, especially if you do not have physical access to a server. Sometimes the old three finger salute is the best and quickest method to reboot a locked and unresponsive Operating System. Regardless of this fact, some Info Sec folks think … Continue reading Disabling Ctrl+Alt+Delete in RHEL 6
Password Protecting Grub in RHEL 6
Grub, is the standard boot loader used by each and every Linux type operating system that I can think of. RHEL 6 uses what I guess we are now calling grub 1.o, since grub 2.0 has been released and in use by Fedora for the last few releases. You will also find that grub 2.0 has replaced grub 1.0 in RHEL 7. At some point I plan to explore grub 2 at lenght, but today is not that day (unless something strange happens before I go to bed tonight -- you never know).