Certifying a RedHat Install

From: abe (abe_at_abeowitz.com)
Date: 07/14/04

  • Next message: Shay Wilson: "RE: Visited by a cracker"
    Date: Wed, 14 Jul 2004 10:37:48 -0700
    To: focus-linux@securityfocus.com

    My client wants me to certify there are no back doors in the RedHat 9
    server we are going to deliver. It's a base RH9 install with a few
    extra RPM's, like Guarddog.

    Question is what's the best way for us to certify this?
    * rpm -Va ?
    * A global md5 on each file?

    Also, what's the best way to minimize liability if they are hacked? I
    don't want to get sued because the were negligent.



  • Next message: Shay Wilson: "RE: Visited by a cracker"

    Relevant Pages

    • Re: frontpage 2003, no support?
      ... Define "doesn't support 2003" and define "has to certify them". ... 2003 doesn't require anything special on the server. ... extensions you are talking about, they can use the FP2002 server extensions. ...
    • Re: RHEL vs Fedora
      ... > like these guys are not even bothering to populate their database with ... I assume Redhat is only going to focus on big ... 1) vendors pay big bucks to get RH to test and certify their ...