On Mon, 1 Sep 2003 07:34:09 +0100 Derek Jennings <[EMAIL PROTECTED]> wrote:
> On Monday 01 Sep 2003 6:40 am, Lee Wiggers wrote: > > Hello all > > <snip> > Depends on how secure you want it to be. > The more services running on a box, the more ways there are to > attack it. So having a dedicated firewall, a dedicated web server, > a dedicated mail server etc is more secure than a multi function > box. (Personally I use a multifunction firewall/web server/ mail > server) > > Do not be too alarmed at how easy it is to ssh around your local > network. Just make sure that port 23 is not open to the wider > internet.(Easily configured with shorewall in /etc/shorewall/rules > then 'shorewall restart) > > If you want greater security it is possible to configure ssh so > that only people with matching encryption keys can connect. This > is described here > http://www.mandrakesecure.net/en/docs/openssh.php > > Now you have ssh working try out one of its coolest features, X11 > forwarding. Just open an ssh session and start up a GUI based > application and it will start up on the client machine. > > derek > > -- > ---------------------------------- > www.jennings.homelinux.net > http://twiki.mdklinuxfaq.org > > > Derek, you've been a great help. The first thing I did was start konq and muddle through what I thought was secure. That's what worried me. I understand now what's going on. (I think) On the bright side, I get to buy another box and relegate my "last years box" to server. That's not a bad thing. I have 8 up now so I get to buy a router too, or should I put the server between the modem and the lan? In that case, another nic is in order. Right now I am using the router firewall and opening ports to the lan ip's as I need them. Hmmmm....Tom Brinkman's new box has much appeal. Off to ebay Lee
Want to buy your Pack or Services from MandrakeSoft? Go to http://www.mandrakestore.com
