[olug] LAMP/linux security auditor

Brian Wiese bwiese at cotse.com
Sun Feb 27 02:38:10 UTC 2005


A friend of mine is in a startup company in VA and is looking for a
Linux/LAMP security auditor to give them a high level of assurance that
the system they are about to deploy is secure.  In addition to distro/3rd
party software scans, this may involve an audit of source code they've
developed (php mostly) as well.

Can anyone recommend (even themselves) an experienced auditor to do this
or where to find one? (CISA,SANS,LUG lists I expect) It's just a startup
company, so there is probably no policy to audit against, but just the
industry standards... so someone whose got a good methodology, toolset,
and eye of what to look for to give them a quick report of their status.

Please contact me off-list for individual recommendations, other
suggestions to the list.

Thanks,
Brian
-- 
Campus Coodinator, Americans for Informed Democracy (AID)
http://www.unomaha.edu/aid
"What we do in life, echoes in eternity" - Gladiator
http://brianwiese.net



More information about the OLUG mailing list