securing an older Linux box

securing an older Linux box

Post by Bill McCart » Wed, 21 Jan 1998 04:00:00



Hi:

I'm running an older linux box - RH 3.0.3 kernel 1.2.13 - as
a web server/newserver. I've buttoned it up w/ restrictive
hosts.allow and hosts.deny and have run cops and plugged the
holes generated therefrom. Any other suggestions for diags
and such? Thanks!
--


L I N U X
Savannah, Ga
http://pw1.netcom.com/~bmcarth

 
 
 

securing an older Linux box

Post by Frank Sweetse » Wed, 21 Jan 1998 04:00:00



> Hi:

> I'm running an older linux box - RH 3.0.3 kernel 1.2.13 - as
> a web server/newserver. I've buttoned it up w/ restrictive
> hosts.allow and hosts.deny and have run cops and plugged the
> holes generated therefrom. Any other suggestions for diags
> and such? Thanks!

check out the many exploits at www.rootshell.com - download 'em and try 'em
out to see if you're vulnerable.

--
Frank Sweetser rasmusin at wpi.edu fsweetser at blee.net | PGP key available
paramount.res.wpi.net RH 5.0 kernel 2.0.33/2.1.80p4 i586 | at public servers
I still maintain the point that designing a monolithic kernel in 1991 is a
fundamental error.  Be thankful you are not my student.  You would not get a
high grade for such a design :-)
(Andrew Tanenbaum to Linus Torvalds)