Very Computer

   I'm using Solaris 8 10/00, recently MU'd and
updated.  

   I purchased a consumer firewall/router/hub a
year ago.  How much security do these offer?  

   I'd like to become enlightened on security
issues, but sites like openssh.org and openssl.org
seem to only address people who already appreciate
the problems.  

   Is there some site that I can visit that will
guide me in setting up a key, a secure replacement
for telnet, and an understanding of what issues and
options I need to learn more about after reading
for an hour?  

                                           Thanks
                                           Larry

Quote:>   I purchased a consumer firewall/router/hub a
>year ago.  How much security do these offer?  

Quote:>   I'd like to become enlightened on security
>issues, but sites like openssh.org and openssl.org
>seem to only address people who already appreciate
>the problems.  

<URL:http://www.sun.com/solutions/blueprints/browsesubject.html#security>

John

Quote:> sites like openssh.org and openssl.org
> seem to only address people who already appreciate
> the problems.  

http://www.deadly.org/article.php3?sid=20000306151402

Quote:>    Is there some site that I can visit that will
> guide me in setting up a key, a secure replacement
> for telnet, and an understanding of what issues and
> options I need to learn more about after reading
> for an hour?

Quote:> Hi Experts:
>    I purchased a consumer firewall/router/hub a
> year ago.  How much security do these offer?  

Quote:>    Is there some site that I can visit that will
> guide me in setting up a key, a secure replacement
> for telnet, and an understanding of what issues and
> options I need to learn more about after reading
> for an hour?  

Network/system security is a huge and complex topic; you're not likely
to get a handle on it from reading one web page.  Your best bet, would be
to get a book - O'Reilly's Practical UNIX and Internet Security
(ISBN: 0-596-00323-4) is a good place to start (*whole* lots cheaper on
Amazon that through O'Reilly's site).  The book is close to a 1000 pages -
to give you an idea of what kind of topic for which you're looking for a
summary...

Doug

--------
Senior UNIX Admin
O'Leary Computer Enterprises

resume:  http://home.attbi.com/~dkoleary/resume.html

   My new Redhat 9 linux install, on a very old PC,
refuses telnet and ftp connections.  Responses to
questions about this in Deja are mostly "telnet isn't
secure, use SSH".  

   That sounds like a great idea.  I'm not trying to
get telnet and FTP services working on this new machine.  
I want to use this situation as my introduction to the
important topic of security.  But I don't know how to
use SSH right now.  I'm working through another
technical book and I'd like to finish that before I
start a thousand page book on security.  

   I'm hoping to find an intro on the net that will get
me talking to my linux PC, and introduced to the larger
issues of security, without derailing my current studies.  

  I have the O'Reilly SSH book on a shelf, a check on
their site shows it to be current.  I also have the
second edition of Practical Unix & Internet Security.  
The third edition is current, so I'm thinking I probably
need a new copy to keep up with this rapidly changing
battlefield.  

                                                  Thanks
                                                  Larry

--
Rich Teer, SCNA

President,
Rite Online Inc.

Voice: +1 (250) 979-1638
URL: http://www.rite-online.net

Try -- http://www.lowth.com/books/network_security_for_dummies

Currently (16th May 2003) going for $20.99

Quote:

* This hands-on, do-it-yourself guide to securing and auditing a network
offers immediate solutions to critical security problems for small- to
medium-sized businesses
 * Each part of the book begins with basics that can be quickly implemented
and then moves on to more complex security mechanisms a company may
consider as it grows
 * Presents numerous checklists and exercises for performing network
security audits
 * Includes real-world examples and practical tips for implementing
cost-effective security measures
 * Companion Web site includes forms and checklists along with links to
useful sites and downloads for recommended security tools

Chris

--
Real address: chris at lowth dot sea oh em.
GPL e-mail anti-virus: http://protector.sourceforge.net
IPTables wizzards: http://www.lowth.com/LinWiz

   Let's put a knife through the heart of this
thread now please.  

   When I'm finished with the book I'm reading,
I'll grab the O'Reilly SSH text and secure my
network.  

   As stated, this isn't something I'm trying
to avoid.  It's something I can't make time for
right now.  

                                        Thanks
                                        Larry