On Fri, Dec 17, 2004 at 10:14:08AM +, Eggert Thorlacius wrote:
What about running yum update from a cronjob every day? I'll admit
that I am no expert on Linux security, but aren't most attacks
exploiting known vulnerabilities that have already been fixed, and thus
only work against
On Wednesday 15 December 2004 23:29, Geoff Scott wrote:
On Wed, 15 Dec 2004 18:54:03 -0600, Kevin Kuphal wrote:
Craig Partin wrote:
Since I have a Windows machine on my net I only open the RDP port
to allow remote desktop access to my Windows box and then access
everything else on my net
On Wed, 2004-12-15 at 21:23 -0500, Craig Partin wrote:
Is SSH the only software people trust to listen for network
connections? What's wrong with apache and SSL? And does myth
(backend or frontend) listen for anything? Are there dangers in just
having one machine running myth also running
I saw repeated login failures for common userid's, including root.
Fortunately, I did not have a weak root password or my systems would have
been hacked.
To thwart the attempts, I changed my sshd configuration to not allow ssh
via passwords at all. To do so, edit /etc/ssh/sshd_config and
Very interested to hear some knowledgable users comments on this.
I am behind a NAT router, have a dynamix IP but will use dynDNS, and I
have port 80 blocked by ISP. I plan to open SSH and a port for HTTP
(1010 or 1080) so I can use MythWeb when out of the house. I will
obvisouly change my
I am behind a NAT router, have a dynamix IP but will use dynDNS, and I
have port 80 blocked by ISP. I plan to open SSH and a port for HTTP
(1010 or 1080) so I can use MythWeb when out of the house. I will
obvisouly change my crappy root password when I get to opening the
ports..
Do they also
Craig Partin wrote:
After reading the post about the poor soul who's box was rooted, it
got me to worrying about my own. Right now I feel pretty safe with
the box behind a NAT hardware firewall. I do want to open some ports
for SSH and HTTP connections and wonder what security considerations I
I use the port forwarding feature of iptables on my linux firewall to
forward a request on port to the web server running on my mythtv box
behind the firewall. This works very well. Trouble is, I've also implemented
the nvram-shutdown stuff so the machine's hardly ever up anyway when I
On Wed, 2004-12-15 at 16:16 -0500, Craig Partin wrote:
What security measures do others have in place?
I do not believe security is a primary design consideration with Myth
and as such, I treat it as untrusted. As to MythWeb, access is
controlled via IP filtering and SSH tunneling.
After reading the post about the poor soul who's box was rooted, it
got me to worrying about my own. Right now I feel pretty safe with
the box behind a NAT hardware firewall. I do want to open some ports
for SSH and HTTP connections and wonder what security considerations I
might be missing.
10 matches
Mail list logo
