[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [cobalt-users] Re: Cube 2 security
- Subject: Re: [cobalt-users] Re: Cube 2 security
- From: Brian <bmcewen@xxxxxxxxxxx>
- Date: Tue Dec 2 19:25:01 2003
- List-id: Mailing list for users to share thoughts on Sun Cobalt products. <cobalt-users.list.cobalt.com>
when you posted that I broke out some old parts and tested away to
re-create
what I had done in the past... it would appear I rebuilt the kernel
for the
card... it does support some scsi cards by default but none I have...
Thanks for checking on that; I found a list of 3 should-be-supported
cards on the old QubeQuorner FAQ and found one model (AHA-2940U) for
cheap. It figures that in my collection of numerous outdated SCSI
cards I didn't have any of the supported ones and had to shop around.
ok.. ftp has so many holes it should be renamed anonftp :D
Well... :) On any linux box I think I'd pretty much only use SSH and
sftp no matter what the release, just out of prudence/paranoia; these
OK here or not? OpenSSH 3.4p1-PM4 is the last .pkg I found
ready-to-use.
I would suggest you setup snort, and a firewall to control access if
you
must put it on the net...
I looked at snort but hadn't yet decided if it would run on the Qube 2
or not- guess it can. Do I need to worry about libpcap being < 0.5?
(the Qube is in bits at the moment :) I'll check later what version
is on it).
http://www.archive.org/download/DuckandC1951/DuckandC1951.mpg
heh. So are any of the following likely to be OK? SSH, sftpd,
POP3/SMTP. IMAP?
Am I OK with just the updates from Sun and a couple 3rd party ones
hosted from pkgmaster or similar or do I need to work at building more
on my own to be OK... hmm... ProFTPd looks to be 1.2.4, will the 1.2.9
compile? But if I go with SSH, that should be SSH2 with sftpd
built-in, right? I guess I'll find out a bit as I go. Care to share
the versions you would run for these services? That would be a big
help, to know I 'm not picking a false endpoint.
I don't mind losing the Cobalt GUI if need be I guess (somewhere I got
the idea that doing PHP means updating Apache which means killing the
simple GUI). But PHP is really the last thing I need it to do at this
time. Everything I setup will be behind a hardware firewall, Netgear
or Linksys over-the-counter variety.
Thanks for the advice! I need to get a SCSI controller in, the SCSI
drive in a box, and files transferred and then I'll start looking for
updates for services for awhile. Then I'll think about perhaps
routing traffic to the box :) I'm in no rush, and I don't mind
research and building items on my own- but I"m not confident that I can
find all the versions I need that will actually compile due to
dependancies etc. on my own. Yet.
Thanks very much for your replies about this.
Brian