21 Aug
2000
21 Aug
'00
10:25
strip the box down, remove alot of s-bits, use sudo to avoid using the root account, reorganize the permissions and privileges of your www server, source code review your cgi scripts, check your config files... still alot to do. ;)
grab bastille-linux (www.bastille-linux.org) and then go to www.securityportal.com/lskb/. =)
grab harden_suse (www.suse.de/~marc) and then goto www.suse.de/security and then goto www.securityportal.com/lskb/. ;) Bye, Thomas -- Thomas Biege, SuSE GmbH, Schanzaeckerstr. 10, 90443 Nuernberg E@mail: thomas@suse.de Function: Security Support & Auditing "lynx -source http://www.suse.de/~thomas/thomas.pgp | pgp -fka" Key fingerprint = 09 48 F2 FD 81 F7 E7 98 6D C7 36 F1 96 6A 12 47