Re: Question for you all

Thu, 03 Jul 2003 14:11:09 -0700 

csell:  Date: Mon, 30 Jun 2003 22:49:32 +0100
csell:  From: CreativeSell <[EMAIL PROTECTED]>
csell:  To: [EMAIL PROTECTED]
csell:  Subject: Question for you all
csell:
csell:  Hi All,
csell:
csell:  Having just got off an awful php host, my partner and I have decided to get
csell:  our own redhat server. However we are slightly apprhhensive about ebing
csell:  hacked to pieces. we are keeping up to date with all bugtracks and security
csell:  updates...what else can we do?
csell:
csell:  Olly



First and foremost, do NOT have your computer on the network until you
*feel* certain that you have secured it.  A computer with a newly
installed OS can be compromised in seconds.


Since I havent touched RedHat in a while, these tools may already be in
the OS.  If not, download them.

1) nmap
2) lsof


I recommend portscanning your computer with nmap to see what ports are
open:
     nmap -sS -O -p 1- localhost
     nmap -sU -p 1- localhost


Once you've established what ports are open, use lsof to see what
programs (aka daemons) are keeping those ports open:
     lsof -i | grep -i LISTEN


If you dont know what the daemon name represents, use man
     man <daemon>
     man telnetd

Then determine if you need/want that daemon to run.


I highly recommend shutting off telnetd, ftpd, rsh, and rlogin.
Im sure there are other daemons to include in this list.


HTH


 Scott Birl                              http://concept.temple.edu/sysadmin/
 Senior Systems Administrator            Computer Services   Temple University
====*====*====*====*====*====*====*====+====*====*====*====*====*====*====*====*


---------------------------------------------------------------------------
Evaluating SSL VPNs' Consider NEOTERIS, chosen as leader by top analysts!
The Gartner Group just put Neoteris in the top of its Magic Quadrant,
while InStat has confirmed Neoteris as the leader in marketshare.
     
Find out why, and see how you can get plug-n-play secure remote access in
about an hour, with no client, server changes, or ongoing maintenance.
          
Visit us at: http://www.neoteris.com/promos/sf-6-9.htm
----------------------------------------------------------------------------

Reply via email to