[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[cobalt-users] How far do you go to secure your raq?

Subject: [cobalt-users] How far do you go to secure your raq?
From: "Berg, Guy van den" <Guy.vandenBerg@xxxxxxxxxx>
Date: Tue May 29 18:21:14 2001
List-id: Mailing list for users to share thoughts on Cobalt products. <cobalt-users.list.cobalt.com>

Just wondering how far do you go?

For example do you do the basics (portsentry/ipchains/logcheck) or do you go
further (update bind/apache/php/remove admin server etc?)

I was just wondering as it seems to me that one of the attractions of raqs
is the ease of admin, however in making it as secure as possible you tend to
break the GUI and make it essentially useless, for example using any later
version of bind or using chattr to protect certain files means you can't
admin through the GUI anyway.

I understand that cobalt release security patches and new kernel patches esp
for the raqs although this sometimes means a long wait b4 a hole is fixed.
Before I go ahead I just wondering if anyone else is considering or has gone
the alternate route of DIY security, compiling your own kernel and
essentially removing the admin server, updating out of date binaries etc?

Ideas, comments or am I barking up the wrong tree?

Cheers,
g.
--
Guy van den Berg
External Consultant
Database Technologies & Support
Compaq Computer EMEA
GIS EMEA Business Solutions

P: +49 89 9392 4324 / F: +49 89 9392 2657

Follow-Ups:
- [cobalt-users] [RaQ3] OFF TOPIC - .COM REGISTRATON
  - From: Sean Chester
- Re: [cobalt-users] How far do you go to secure your raq?
  - From: Kevin D

Prev by Date: Re: [cobalt-users] Offtopic but of public interest
Next by Date: AW: [cobalt-users] CGI Wrap error
Previous by thread: Re: [cobalt-users] RAQ2 writelcd/swritelcd binaries
Next by thread: [cobalt-users] [RaQ3] OFF TOPIC - .COM REGISTRATON

Sun Cobalt Users Message Index

Sun Cobalt Users Thread Index