Re: Keeping remote root access to a compromised network - question
From: ksemat@wawa.eahd.or.ugDate: 11/14/01
- Previous message: brad's @ Home: "How to hard wire arp tables? (Newbie)"
- In reply to: Jim Raynor: "Keeping remote root access to a compromised network - question"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Wed, 14 Nov 2001 18:09:57 +0300 (EAT) From: <ksemat@wawa.eahd.or.ug> To: Jim Raynor <unsolved@netcabo.pt> Subject: Re: Keeping remote root access to a compromised network - question Message-ID: <Pine.LNX.4.33.0111141807150.27978-100000@sanyu1.sanyutel.com>
> The the network is running Sendmail, an HTTPD, an FTPD and any other
> popular Daemons you want it to.
well first of all I would trash sendmail if I the admin does not spend
much time maintaining his network. You're better off with postfix which
has had far less security issues. For the ftpd I would recomment vsftpd
which to date hasn't had any security issues. it works quite well for me.
Basically for all thedaemons you plan to run you have to look for the most
secure versions of them implement tcp wrappers protection,
ipchains/iptables protection and probably add LIDS and the openwall patch
for securing the linux kernel.
Noah.
>
>
> Whatever,
> Jim Raynor
>
- Previous message: brad's @ Home: "How to hard wire arp tables? (Newbie)"
- In reply to: Jim Raynor: "Keeping remote root access to a compromised network - question"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
