Securing Remote Shell Access via PHP Module

Hi People, need some advice in securing two suSe Linux 8.2 Server which should communicate through a remote Shell running on wwwrun ( PHP driven ). Servers are both secured with portsentry. Any hints / advices what else i should do to keep the risk down to a minimum? Best Regards ben

On Feb 3, mailings - kunstwerke.designs <mailings@kunstwerkedesigns.de> wrote:
Hi People,
need some advice in securing two suSe Linux 8.2 Server which should communicate through a remote Shell running on wwwrun ( PHP driven ). Servers are both secured with portsentry. I don't really understand what you mean by "php driven remote shell". Can you tell us the software that you are using?
Any hints / advices what else i should do to keep the risk down to a minimum? I would at least install a custom kernel with grsecurity patch, forbid users to see processes of other users and enable as many of the other security options as possible (some break e.g. java, so watch out). Of course, always watch your logfiles (logcheck) and apply security updates when they come out (fou4s).
Markus -- __________________ /"\ Markus Gaugusch \ / ASCII Ribbon Campaign markus(at)gaugusch.at X Against HTML Mail / \
participants (2)
-
mailings - kunstwerke.designs
-
Markus Gaugusch