Re: Announcement: SIGLinux Meeting.

Ido Dubrawsky Thu, 11 Mar 1999 22:25:19 -0500
Actually, with Solaris, you could run ASET at it's highest level and pretty
much almost cripple access to the machine...sort of a royal pain in the you-
know-where, but it's possible.  Also, running the base security module and
tuning it to look for a wide variety events makes for some interesting head-
aches.  I agree that linux is probably far easier to catch suspicious 
activity on and getting package updates semi-automatically is very nice 
(although I can also set up a similair situation on my Solaris boxen...a little
PERL, a little automount, etc.) but I find both Solaris and Linux to be com-
parable with regards to security.  In fact, I've made some of the linux 
enhancements standard on any Solaris machine I have.

Ido

According to Matthew Sayler:
> 
> > Matthew Sayler <[EMAIL PROTECTED]> wrote:
> > > Security is a good place to start, though as far as Linux goes,
> > > my Linux boxen are much more secure than my Solaris boxen.  
> 
> To clarify this statement, I would add that a certain baseline security
> is easier to maintain with Debian than with Solaris.  There's more
> reporting of suspiscous activities by default and I get package updates
> semi-automatically (instead of having to download and install install 
> patch 217182-81 b hand).  That said, I'm sure Solaris can be locked 
> down tighter than a [insert-your-own-colorful-methapor].  I just
> feel that I don't have the time to do it!  :-)
> 
> > As so far as monitoring machines .. the firewall I run at home is a combination
> > of linux ipmasq, tcp/udplog, traceroute detection, and abacus sentry. If
> > you're not familiar with any of these products, let me know and I can fill
> > you in  .... or wait and peg people at the meeting ;)
> 
> Well, I have little problem firewalling my home network pretty well.
> It's more like the machines at work that are on the astronomy
> ether that I worry about.
> 
>               Matt
> 
> -- 
> /* Matt Sayler -- [EMAIL PROTECTED] -- atwork?astronomy:cs
>    http://www.cs.utexas.edu/users/mpsayler   -- (512)471-7450
>    Have you ever imagined a world with no hypothetical situations? */
> ---------------------------------------------------------------------------
> Send administrative requests to [EMAIL PROTECTED]
> 


-- 
Ido Dubrawsky
UNIX System Administrator
Physics Computer Group                  [EMAIL PROTECTED]
RLM 7.126                                       (512) 471-5821
University of Texas at Austin
Austin, TX. 78712
---------------------------------------------------------------------------
Send administrative requests to [EMAIL PROTECTED]
Re: Announcement: SIGLinux Meeting.

Reply via email to
