After having my linux boxes eventually hacked to pieces from neglect, I'm
reinstalling with RH7.0 and locking the boxes as much as possible. I have 2
dns servers that I want only to run bind and ssh. How can I can check to see
what ports are still open? I think I closed everything but I want to
-
From: Jeff Graves [mailto:[EMAIL PROTECTED]]
Sent: Thursday, May 03, 2001 2:58 PM
To: Redhat
Subject: Security issues Tripwire
After having my linux boxes eventually hacked to pieces from neglect, I'm
reinstalling with RH7.0 and locking the boxes as much as possible. I have 2
dns servers that I
Jeff Graves wrote:
After having my linux boxes eventually hacked to pieces from neglect, I'm
reinstalling with RH7.0 and locking the boxes as much as possible. I have 2
dns servers that I want only to run bind and ssh. How can I can check to see
what ports are still open?
The netstat(8)
On Thursday 03 May 2001 05:57 pm, Jeff Graves wrote:
Also, I installed the rpm for tripwire but the documentation sucks
(acutally, I couldn't find anything but comments in what I think were
config files). The website tripwire.org didn't have anything either. Does
anyone know of any documents
On Thu, May 03, 2001 at 08:08:28PM -0400, Devon wrote:
I'm not sure what version of Tripwire your running, but you should
find some documentation in /usr/share/doc/tripwire-2.3.0/ (for the
most recent release at any rate) You should also be able to find
more information at
netstat -at will show what's open, just comment out whatever you don;t
want in inetd or xinetd. Tripwire is built for a RH 7.0 install of
everything so you'll have to edit the policy text file to comment out
the files you don't have and run twinstall.sh and tripwire --init. There
are only a few