Quote:> I am about to install a Linux box with a apache webser application
> on my company's intranet (99,9% windows boxes).
> Which serurity issues do you see in this situation? The intranet is
> of cource behind firewalls etc. The apache webserver will not be
> visible from the internet. All windows boxes are running the latest
> anti-virus software regulary.
> How can I obtain a secure intranet web service concerning windows
> viruses, etc.?
> All comments are more than welcome
It's a lot like "interspecies disease transmission," namely that it
hardly ever happens.
If the Windows boxes are rife with RedCode or Nimda viruses, you'll
doubtless see entries in Apache's logs indicating that there were
attempts to run Windows .EXE files on the Linux box; none of it will
actually _work_, you're totally safe from that sort of thing.
If there's nothing there to attack the box, then there should be very
few security issues.
You might want to stick a "rootkit checker" and maybe the "Tiger" set
of security auditing tools on the box; if there's someone inside the
network specifically trying to crack into Unix-like boxes, you might
catch them. But if that scenario sounds as implausible to you as it
does to me, it's certainly not something you'd /expect/.
If you're running Sendmail (or some other such MTA) on the box, and
forwarding mail to anyone, it /might/ be worth putting some sort of
virus checker in to make sure you don't pass on "evil mail," but
again, it's unlikely to be a problem unless you're either accepting
mail from outside, or there's (again) the "someone inside that's out
to get you."
The Linux box is immune to the viruses that would be attacking the
Windows systems, and unless it specifically gets cracked by an
adversary (again, the "someone inside the network that's out to get
you" scenario), it's not going to pass anything evil on to anyone
else.
--
http://cbbrowne.com/info/security.html
Talk a lot, don't you?
by