CMC wrote:
>
> Hi Everyone- Is there any reading material on Securing a linx box running
> Stormix. I'm interested in knowing about how to secure a box from smash
> attacks, buffer overflows etc.I've read the section under security within
> the Debian web site- and would like to know if anyone has any other material
> they recommend.
>
> CMC
> IT-Tech
> Linux Hatchling
>
Hi
For regular attacks I suggest you look into ipchains,as for buffer
overflows
have a look at libsafe(just search for libsafe).If you're really
paranoid you can
apply the openwall patches(htp://www.openwall.org) to the kernel and
recompile all your installed packages with libverify -see man apt-get
especially the -b option.You can even setup a local mirror and write a
small wrapper for apt-get that will compile by default then install.For
a local mirror look at dpkg-scanpackages and wget or rsync.
And of course trim /etc/inetd.conf,kill portmapper(man
update-alternatives) if you don't need it,look into /etc/hosts.allow
/etc/hosts.deny ..the regular stuff that should be done for every
distro.
_______________________________________________
Stormlinux-users-list mailing list
[EMAIL PROTECTED]
http://www.stormix.com/community/lists/listinfo/stormlinux-users-list
