BASTILLE-LINUX






		I'm a computer security professional specializing in Unix lockdown, but practicing in a wide variety of areas from penetration testing to forensics. This site shares information on what I do, including links to articles and conference talks. LockDown: I'm the Lead Developer of the Bastille Linux project, which creates a security hardening program for Linux and HP-UX. I write articles, give talks, and train people in Unix Lockdown. Security Audit: Besides writing the Center for Internet Security's Unix security auditor program, I do work doing penetration testing and vulnerability assessment. Also called "ethical hacking," this is basically where you simulate attacks on a client's computers and infrastructure to discover weaknesses. Honeynets: I'm a member of the Honeynet Project. We're developing and deploying technology to observe "black hats," people who break into computers illegally. Via the project website, we share the technology and the lessons that we learn. Consulting: I pay the bills as a security consultant, working for Intelguardians, LLC. I do penetration testing (also called "ethical hacking"), architecture reviews, as well as generalized security consulting. The firm also does forensics, incident response and vulnerability assessment. External Security Links: I've compiled a set of security links that everyone might find interesting. Some of the most recent items there describe new software like Systrace (kernel-level jailing) and vsftpd (FTP server replacement). -------------------------------------------------------------------------------- Jay Beale's PGP key My PGP key can be found here. You should check the fingerprint on this key versus one that is one of my past e-mails. Better yet, grab one from a keyserver. -------------------------------------------------------------------------------- Note: if you think this site is egotistical, condescending or anything like that, please send me e-mail at jay@bastille-linux.org, telling me so. I'm trying to include links to my articles and talks, partly at people's request, but many webpages of this sort can get unintentionally egotistical. I've done it before and thus might do it again. Thanks. -------------------------------------------------------------------------------- Anti-SPAM My spam filtering solution of choice is the commercial solution No-Junkmail.com, Albert Whales's company for providing Spam Zapper technology. The SPAM Zapper has been nothing short of amazing, filtering a huge portion of my SPAM and assigning client-filterable scores to the rest. In-line, server side, definitely seems the right place to filter SPAM. Finally, I don't have to spend the first 15 minutes of my day deleting pagefuls of SPAM.