[SYMBOL] [A] [B] [C] [D] [E] [F] [G] [H] [I] [J] [K] [L] [M] [N] [O] [P] [Q] [R] [S] [T] [U] [V] [W] [X] [Y] [Z] A-records (address records)  A-records (address records)[A}  A§mann, Claus  access control     Access Control Lists (ACLs) in BIND      Apache          combined access          environment-variable          host-based          user-based      mechanisms          syslog, and          TCPwrappers  access database in Sendmail  2nd  access restriction  2nd  3rd  [See also authentication]     client-certificate authentication      SSH, and  access.conf file  2nd  accounts, deleting unnecessary  AccountSecurity.pm, InteractiveBastille module  ACK scanning  acl{} sections in named.conf file  actions, syslog      chart summary  address records (A-records)  2nd  AIDE (Advanced Intrusion Detection Environment)  ALEs (Annualized Loss Expectancies)  algorithm, defined  aliases  2nd      converting to map file      creating IP aliases      database and SMTP gateways      mailing lists  2nd      Postfix  Allman, Eric  allow-query, BIND global option  allow-recursion, BIND global option  allow-transfer, BIND global option  AllowRetrieveRestart, ProFTPD setting  alternation  Amoroso, Ed  Analysis Console for Intrusion Databases (ACID)  Annualized Loss Expectancies (ALEs)  anomaly detection systems  anonymous FTP  2nd      chroot jail, building      ProFTPD          configuring FTP user accounts          setup      securing  anonymous uploads using rsync  anti-spoofing  [See spoofing] aolserver  Apache      access control          combined access          environment-variable          host-based          user-based      authentication         basic          safer      authorization      configuration         .htaccess files          files          options      configuring      digest authentication      dynamic content, and      dynamically linked versions of      file hierarchy, securing      firewall, setting up      GUI tools      installation methods         linking          RPM          source      installing          file locations      log directories      options, resource      running an older version of      static content, and      statically linked versions of      user directories      version checking  Apache Configuration Tool  Apache.pm, InteractiveBastille module  application gateways      versus circuit relay proxies  application servers  application-layer proxies  [See application gateways] arachNIDS     attack signature database      project site  asset devaluation  assigning new ports  Atkins, Todd  attack     signatures  2nd  [See also Snort rules]         arachNIDS attack signature database      trees  attackers, detecting  attacks  [See also threats]     buffer-overflow  2nd      cache poisoning  2nd  3rd  4th          best defense against      Code Red      cost estimates for      defenses against      Denial of Service (DoS)  2nd  3rd  4th          calculating ALEs for          spoofed packets      Distributed Denial of Service (DDos)      FTP Bounce      hijacked         daemon      IP-spoofing  [See spoofing]     message-forgery      mitigation of      motives for      Nimda      PORT Theft      SMTP targeted      spoofing  2nd  3rd  4th  5th          anti-IP-spoofing rules      TCP/IP Stack Attack  Audit Based IDS  auth facility, syslog  auth users, rsync option  auth-priv facility, syslog  authentication  [See also public-key cryptography; SASL; SMTP AUTH]     Apache         basic          safer      certificate-based          client certificate-based          specifying where to keep certificates          Stunnel, and      challenge-response      mechanisms      peer-to-peer model for      rhosts and shosts      RSA/DSA  2nd          combing with rhosts access          setting up and using      rsync      SSH, and      SSL sessions      username/password  2nd  authorization  [See access control] authorized_keys file  2nd  3rd  automated hardening  axfr-get, djbdns service      running  axfrdns, djbdns service      installing and running