open ports are 22, 111, 6000. If you manage to close these ports (easy. :-), then you wouldn't even need a firewall any more.
You mean as a packet filtering I guess :-)
:-) Right...
Chrooting all possible services (see the thread I started a few days ago,)
We're continuously working on this, as it will become a more and more important configuration feature in the future. Be aware that chroot() doesn't make sense for services that need root privileges to run, for one or the other reason. [...]
while still allowing SuSEconfig to work efficiently
Same applies. Will always be faster, we hope.
1) find something to replace harden_suse that at least I know it will do the job
Work in progress.
2) Update the Secure webserver Howto ( it ha not been updated for such a long time mentioning SuSE 6.4 (and 7.1) which is discontinued ages ago
Marc did so already, it will be published near the end of the year or the beginning of the next year. The white paper will refer to SLES8, not only a webserver, but all of the information applies to SUSE Linux as well.
I'll place my sock next to the fireplace who knows maybe Santa Claus visits me also :-)
I did that with my entire underwear already, didn't help, probably kept Santa away. :-)
Ich Wünsche Alles ein schönes neu Jahr Wish you all a happy new year
ps. : If my German sucks sorry its only been 3 months I have been in germany and started tak,ing lessons like a month ago )
Nix da. Das Deutsch ist besser als das von vielen, die schon immer Deutsch
sprechen können sollten.
No worries!
Thanks,
Roman.
--
- -
| Roman Drahtmüller