DrakSec: Securing your Machine

There is a graphical interface to MSEC called draksec. You can access it through Control Center. It allows you to change your system's security level. An advanced mode allows you to configure every option of MSEC security features.

Setting your Security Level

Figure 16.1. Choosing the Security Level of your System

Choosing the Security Level of your System

Simply choose the security level you want from the pull-down list: it will be effective as soon as you press on OK. Please read the help tooltips very carefully so you know what a specific security level involves for you and your users.

Tip

If you wish to check what options are activated for each security level, review the three other tabs: Network Options, System Options and Periodic Checks. They present the default settings for each available option. If some of the default options do not suit your needs, simply redefine them in each tab. See next section for details.

By checking the Security Alerts box, possible security issues found by MSEC will be sent by mail to the Security Administrator defined below. You can use a local user name or a full e-mail address.

Custom Security Level

Clicking on each of the Options tabs (and the Periodic Checks one) will lead you to MSEC's list of all security options. This allows you to define your own security level based on the security level previously chosen.

Figure 16.2. Modifying Standard MSEC Options

Modifying Standard MSEC Options

For each tab, there are two columns:

  1. Options List. All available options are listed with the default security level setting shown in parenthesis.

  2. value. For each option you can choose from the corresponding pull-down menu:

    • Yes. Activate this option no matter what the default value is.

    • No. Deactivate this option no matter what the default value is.

    • Default. Keep the default security level behavior.

The different available buttons are:

  • OK. Accepts the current security level with custom options, applies it to the system and exits the application.

  • Cancel. Discards changes, keeping the old security level and exits the application.