Linux Security Technologies The continued popularity and rapid growth of open source software in general and the Linux operating system specifically are having a disruptive impact on proprietary software. The disruptive impacts of open source software are so pervasive that they are completely re-ordering the enterprise system strategies in many corporations globally today (Rooney, 2004). With this proliferation of open source software and the foundation being laid by the Linux operating system, there continues to be an urgent and escalating need for new security tools and applications and tools as well. Of the many security applications and tools available for the Linux operating system, the three that will be analyzed and assessed in this paper include chroot jail, iptables and SELinux. The analysis will include which organizations are sponsoring the development of each of these technologies, an explanation of how each of these technologies change the Linux operating system to make it more secure, and which types of threats each of these technologies are designed to eradicate and protect against.

chroot jail Evaluation

Originally designed and first launched in the initial release of Unix Version 7, which was first introduced in 1979, the chroot jail command limits which users have access to the root directories of UNIX. This is critically important from a system administration command standpoint, as the root directory access on a UNIX system can quickly re-order directory structures and en masse delete data and applications. During this timeframe the Berkeley System Division (BSD) UNIX was also very popular, and the vulnerability of root directory access was a very high security priority for commercial, educational and government organizations standardizing on this command. The chroot jail command was quickly integrated into the initial BSD releases due to the high priority customers of this operating system placed on its value...

When this command did not exist any user could get to any location in the system, with full rights to edit, duplicate, delete or modify applications. As the UNIX kernel in Linux recompiles at application run-time, this could easily change which applications were working correctly or not (Rooney, 2004). This command also blocked unwanted access over networks connected to UNIX systems as well. Prior to this command it was possible for sophisticated users including hackers to traverse an entire network and gain access at the root level to any system they chose (Rooney, 2004). As of 2012, this command is being used to create development environments or sandboxes for testing applications and ensuring spurious or erroneous threads don't crash the system or harm other, more stable applications. This technology is now also pervasively used for creating network-wide application testing and validation for Web-based applications including social network platforms running on the Linux operating system.
SELinux Evaluation

This technology first was introduced in December, 2000 as part of the GNU GPL release, one of the most successful open source operating systems ever produced. The core technology of SELinux was invented by the U.S. National Security Agency (NSA) and commercialized for use so organizations could benefit from its many benefits. SELinux has significant support as a core technology in many distributions of the Linux operating system and its variants, including Linux kernel 2.6.0-test3 operating system (8/2003 release) (Greenemeier, 2005). The premise of this technologies' architecture is based on having the agility of a command that can control…