Re: Securing Fedora Core 4

• Previous message: barti: "Re[2]: Securing Fedora Core 4"
• In reply to: AragonX: "Re: Securing Fedora Core 4"
• Next in thread: Glynn Clements: "Re: Securing Fedora Core 4"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

To: focus-linux@securityfocus.com
Date: Sat, 24 Sep 2005 12:28:00 +0200

So, use virtualization (like Xen) at least for the public services (email and
web).

El Viernes, 23 de Septiembre de 2005 14:46, AragonX escribió:
> <quote who="K. Jusupov">
>
> > Nice (impressive) list...
> >
> > But wouldnt it be better first to classify the servers
> > that you are going to secure?
> >
> > DB server might not neet spamassasin installed or mail
> > server would not require for php related things and so
> > on...
> >
> > And it would be easier later to maintain all these
> > extra packages (updates would be required not only OS
> > related, but these packages as well...)
>
> Well, the offices that I will be setting up are rather small and I can't
> convince them to separate the services to multiple machines.
>
> So basically, the servers will have to do everything. Email, web,
> firewall, gateway, file & print. Those are the tasks it will have to
> perform.
>
> There won't be any confidential information on the server so data
> protection is not a big priority.
>
> Email and web are the services that will be available to the Internet. I
> guess I'm more worried about the web services. They need remote email and
> I was planning on using Squirrelmail for that. They will probably want
> reports something that Awstats can perform.
>
> That opens 3 big holes. Php, Perl and CGI. I'll use Apache to password
> protect the directories that these applications will live in. That should
> stop the worms.

-- 
Fco. Jose Garrido Matamoros
Ingeniero Sup. Telecomunicacion
TecVD - Seguridad y Control de Sistemas de Informacion
http://www.tecvd.com
NOTA.- Las tildes de este mensaje han sido omitidas expresamente para evitar
cualquier tipo de alteracion en los caracteres del texto.
******************AVISO LEGAL******************
Este mensaje es privado y confidencial y solamente para la persona a la 
que va dirigido. Si usted ha recibido este mensaje por error, no debe 
revelar, copiar, distribuir o usarlo en ningun sentido. Le rogamos lo 
comunique al remitente y borre dicho mensaje y cualquier documento 
adjunto que pudiera contener. No hay renuncia a la confidencialidad ni a 
ningun privilegio por causa de transmision erronea o mal funcionamiento. 
Cualquier opinion expresada en este mensaje pertenece unicamente al autor 
remitente, y no representa necesariamente la opinion de Tecnologias de 
Vigilancia y Deteccion, S.L., a no ser que expresamente se diga y el 
remitente este autorizado para hacerlo. 
Los correos electronicos no son seguros, no garantizan la confidencialidad 
ni la correcta recepcion de los mismos, dado que pueden ser interceptados, 
manipulados, destruidos, llegar con demora, incompletos, o con virus. 
Tecnologias de Vigilancia y Deteccion, S.L. no se hace responsable de las 
alteraciones que pudieran hacerse al mensaje una vez enviado. Este mensaje 
solo tiene una finalidad de informacion, y no debe interpretarse como una 
oferta de venta o de compra de cualquier producto o servicio. En el caso 
de que el destinatario de este mensaje no consintiera la utilizacion del 
correo electronico via Internet, rogamos lo ponga en nuestro conocimiento.
Se le informa que los datos de caracter personal que libremente 
suministre pueden ser incluidos en un fichero para facilitar la oferta de 
servicios y/o productos basados en las preferencias y requerimientos que 
comunique. En todo caso le asiste el derecho de acceso, rectificacion, 
cancelacion u oposicion al tratamiento de esos datos; para ejercer estos 
derechos debe dirigirse por escrito adjuntando fotocopia de DNI, o documento
equivalente, a la sede de la empresa.
******************DISCLAIMER******************
This message is private and confidential and it is intended exclusively for 
the addressee. If you receive this message by mistake, you should not 
disseminate, distribute or copy this e-mail. Please inform the sender and 
delete the message and attachments from your system. No confidentiality 
nor any privilege regarding the information is waived or lost by any 
mistransmission or malfunction. 
Any views or opinions contained in this message are solely those of the 
author, and do not necessarily represent those of Tecnologias de Vigilancia 
y Deteccion, S.L., unless otherwise specifically stated and the sender is 
authorised to do so. 
E-mail transmission cannot be guaranteed to be secure, confidential, or 
error-free, as information could be intercepted, corrupted, lost, 
destroyed, arrive late, incomplete, or contain viruses. Tecnologias de 
Vigilancia y Deteccion, S.L. does not accept responsibility for any changes 
in the contents of this message after it has been sent. 
This message is provided for informational purposes and should not be 
construed as a solicitation or offer to buy or sell any product or service. 
If the addressee of this message does not consent to the use of internet 
e-mail, please communicate it to us.

• application/pgp-signature attachment: stored

• Previous message: barti: "Re[2]: Securing Fedora Core 4"
• In reply to: AragonX: "Re: Securing Fedora Core 4"
• Next in thread: Glynn Clements: "Re: Securing Fedora Core 4"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]