KLUG Meeting Minutes and Agenda (#7) The seventh meeting of the Kingston Linux User Group was held Mon, May 3, 1999 at 7PM at RMC. The meeting lasted until about 10:15 PM. The attendees were: Bekhit, Hersiana xxxxxx* Conrad-Avarmaa, Brigitte x***x** Dore, Gabriel x*x*xx* Drummond, Mark ******* Dunne, Shane xxxxxx* Dybvlk, Mathias xxxxxx* Fuitz, Wolfgang xxxxxx* Gulbraith, Chris xxxx*x* Hammond, Andrew ***xx** Healy, Art xxxxxx* Jezak, Edward **xxx** Kuby, Michael *xxxx** Lamb, David xxxxx*? Lees, John Ross xxxxxx* Malone, Rick ***x*** MacIntosh, Bob xxxxxx* Miller, George *xxx*x* Mitton, Douglas ******* Szafranski, Mike xxxxx** Tiffe, Michael xxxxx** Wallace, (J.)Dennis xxxxx** Meeting Schedule: (Monthly, alternating between first Mon and Wed evenings at 7PM. Locations to be determined.) 8 - Wed, Jun. 2 at Tyr-Na-Nog. (Social evening and Install-Fest Prep.) (Remember! Installfest June 5 at Comtech!) 9 - Mon. July 5 at RMC. (Quake Night; gaming in general?) 10 - Wed, Aug. 4 at ???. Summary Of Activities: - Web page host and domain name - klug.on.ca has been registered. - Internet presence - Temporary web page at http://signals.rmc.ca/klug. - Install-fest - June 5th at Comtech. Agenda/Minutes: 1) Roll Call and Introductions - See attendees above. 2) This Meeting: Once again this was not a business meeting, instead it was our second Linux presentation, "Securing Linux" by Andrew Hammond. We also (once again) set a new attendance record. There were 21 people in the room at one point. Mark Drummond once again hosted tours of the RMC computing center, as well as making copies of Linux distributions for attendees who supplied blank media (thanks Mark). Mark also distributed copies of the KLUG and Install-Fest flyers for members to post. Andrew started out by describing his Linux/Unix Security Consulting business. He then proceeded to "scare" most of the attendees by explaining the reasons WHY computer security is so important. Some of the reasons were Crackers, BackOrfice Trojan, Linux Root Kit, IP Spoofing, Sniffing and a few others which I didn't get written down. Then he presented the Linux, and other, general measures that can be taken to protect your system. These included password selection, deactivation of unused services, TCP wrappers, IP Chains, system logging and the various kernel options that can be compiled in to add security. He also touched on several system additions such as TripWire, SSH, Roxen and other cryptographic additions to aid security. Andrew then started to demonstrate the edits and syntax on a Debian installation. Some tricks with the hosts.allow and host.deny files, ipchains samples and the removal of unwanted services from inetd.conf (and other config files). The demo ran out of time due to some booting problems with the Debian installation, (it seemed to want to connect to some network servers and we weren't networked). The notes from Andrews presentation will be posted to the web page and any questions/discussion can take place on the mailing list. If anyone has ideas for future presentations (a suggestion doesn't mean you have to present) then please either post them to the mailing list or send them directly to Mark. 3) Next Meeting: - Social night and Install-Fest preparation (if required) at Tyr-Na-Nog! 4) Socialize / Adjourn (Set location and agenda for the next meeting.)