[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [cobalt-users] hack?

Subject: Re: [cobalt-users] hack?
From: "E.B. Dreger" <eddy+public+spam@xxxxxxxxxxxxxxxxx>
Date: Fri Sep 27 13:42:32 2002
List-id: Mailing list for users to share thoughts on Sun Cobalt products. <cobalt-users.list.cobalt.com>

JDG> Date: Fri, 27 Sep 2002 04:12:02 -0500
JDG> From: John D. Gorena


JDG> How much tighter can I get it?

Much.


JDG> I do not allow telnet and we use SSH.  Is there something
JDG> that I am missing?

Lots.

Security is a process, not a product.  It is ongoing maintenance.
It is expertise.

Do you set append-only on logfiles?  Immutable on binaries
(although some will argue me on this)?  Disable execution of
files on the partition containing user home directories?  Disable
direct root login?

I could go on and on.  Use Google, as others have suggested.


Eddy
--
Brotsman & Dreger, Inc. - EverQuick Internet Division
Bandwidth, consulting, e-commerce, hosting, and network building
Phone: +1 (785) 865-5885 Lawrence and [inter]national
Phone: +1 (316) 794-8922 Wichita

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Date: Mon, 21 May 2001 11:23:58 +0000 (GMT)
From: A Trap <blacklist@xxxxxxxxx>
To: blacklist@xxxxxxxxx
Subject: Please ignore this portion of my mail signature.

These last few lines are a trap for address-harvesting spambots.
Do NOT send mail to <blacklist@xxxxxxxxx>, or you are likely to
be blocked.

Follow-Ups:
- Re: [cobalt-users] hack?
  - From: John D. Gorena

References:
- Re: [cobalt-users] hack?
  - From: John D. Gorena

Prev by Date: [cobalt-users] Cobalt Sendmail 8.10.2 vs. 8.11.6
Next by Date: [cobalt-users] RE: cobalt-users digest, Vol 1 #5036 - 16 msgs
Previous by thread: Re: [cobalt-users] hack?
Next by thread: Re: [cobalt-users] hack?

Sun Cobalt Users Message Index

Sun Cobalt Users Thread Index