Mr. Robot got at least one thing right with that “DAT” file: Files are at the root of all things security in Linux. While file integrity monitoring is an aspect of Windows security, it’s absolutely critical to Linux and Unix security. In fact, file integrity monitoring is one of the first things you need to ensure is done right when it comes to securing Linux and detecting attacks. But which files and directories do you need to monitor? Some folks will say “everything” — and that’s a nice goal but not practical. In this on-demand training webinar, Randy Franklin Smith will show you:
- Where key configuration and other security sensitive files are stored in Linux
- Where important binaries and scripts reside that should be monitored for modification or replacement
Randy will also discuss when you can expect different files and folders to be modified for legitimate reasons, tips for detecting malicious changes, and how to reduce noise by excluding files like log files which are always changing. Watch now!
Randy Franklin Smith is an internationally recognized expert on the security and control of Windows and Active Directory security who specializes in Windows and Active Directory security. He performs security reviews for clients ranging from small, privately held firms to Fortune 500 companies, national, and international organizations.
Randy Franklin Smith began his career in information technology in the 1980s developing software for a variety of companies. During the early 1990s, he led a business process re-engineering effort for a multi-national organization and designed several mission critical, object-oriented, client/server systems. As the Internet and Windows NT took off, Randy focused on security and led his employer's information security planning team. In 1997, he formed Monterey Technology Group, Inc. where he serves as President.
- Certified Information Systems Auditor (CISA)
- Microsoft Security Most Valuable Professional (MVP)
- Systems Security Certified Professional (SSCP)
- Information Systems Security Association (ISSA)
- Information Systems Audit and Control Association (ISACA)
- Center for Internet Security (CIS)