Want to protect your cyber security and still get fast solutions? Ask a secure question today.Go Premium

x
?
Solved

Security Policy Implementation

Posted on 2006-06-30
1
Medium Priority
?
280 Views
Last Modified: 2013-11-16
hi all, I am doing my project on Security policy implementation, i want to prepare some internet security policy on My windows Operating system with VB.Net and then i want to configure security settings in Linux operating system, In linux System, i want to configure Different Linux security utilities like Linux Firewall, Spamassisssn and Linux Content Filter According to my Configuration files generated from my Window operating System, I want to use XML files to configure all security files, please if you people are having any suggestion please give me urs valuable giudance.
0
Comment
Question by:rahulrai19
1 Comment
 
LVL 38

Accepted Solution

by:
Rich Rumble earned 750 total points
ID: 17019650
So, you'd like to effectivly mirror the settings on the linux box, that you set on the widows box.
It won't be easy... while the XML file will be a good place to keep the settings, as it is a very universal format, gathering the data, and applying it will require two very different methods.

I'm no programmer, but there are already tools that M$ has built in that can query just about anything in the OS.
http://www.xinn.org/wmic.html  http://xinn.org/logonscripting102.html http://xinn.org/misc-scripts/examples102.txt
WMIC has an XML output format, as does the MSBA tool form M$

You'd then have to parse those settings into linux, the firewall rules would have to be read from the XML file, then converted to IPTable rules...
http://xinn.org/iptables-nat.html
-A RH-Firewall-1-INPUT -m state --state RELATED,ESTABLISHED -j ACCEPT
-A RH-Firewall-1-INPUT -i eth1 -m state --state NEW -m tcp -p tcp --dport 22 -j ACCEPT
-A RH-Firewall-1-INPUT -i eth1 -j DROP
-A RH-Firewall-1-INPUT -i eth0 -j ACCEPT

I'm not sure what other settings from the M$ OS you'd want to duplicate to the linux machine...
-rich
0

Featured Post

Threat Trends for MSPs to Watch

See the findings.
Despite its humble beginnings, phishing has come a long way since those first crudely constructed emails. Today, phishing sites can appear and disappear in the length of a coffee break, and it takes more than a little know-how to keep your clients secure.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Spectre and Meltdown, how it affects me and my clients?
The article explains the process to deploy a Self-Service password reset portal I developed a few years ago. Hopefully, it will prove useful to someone.  Any comments, bug reports etc. are welcome...
Nobody understands Phishing better than an anti-spam company. That’s why we are providing Phishing Awareness Training to our customers. According to a report by Verizon, only 3% of targeted users report malicious emails to management. With compan…
Sometimes it takes a new vantage point, apart from our everyday security practices, to truly see our Active Directory (AD) vulnerabilities. We get used to implementing the same techniques and checking the same areas for a breach. This pattern can re…
Suggested Courses

579 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question