[olug] Security

[David Walker]

I agree

Personally I recommend running nothing but the barest of essentials on any 
machine exposed to the internet and, if SSH is essential, running it on a 
non-standard 5 digit port.  This keeps it off the radar of your regular 
script kiddies.

On Friday 04 January 2002 11:48 am, you wrote:
> A very valuable lesson for someone starting out or a profesional managing
> many servers was learned by a couple of us last night.  You are never
> secure if you have any external access to your network be it SSH,
> internet...anything really.  If someone wants in they will find a way in
> and the only way around it is a strict security policy such that people are
> not running services that can be exploited to gain access to a computer on
> an internal network.  So please tomorrow let us stress security in this day
> and age when any little "script kiddie" can get access on your
> computer...let's help the new people configure ipf properly to only allow
> what they really really want to have external access to have it.  Let's
> explain that sometimes security means reduced "fluff".  It is a lesson we
> learned last night/this morning very well I believe...right Brian?  Just my
> $.02....
>
> Nate Rotschafer
>
> _________________________________________________________________
> Chat with friends online, try MSN Messenger: http://messenger.msn.com
>
>
> -_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_
>
> For help contact olug-help at bstc.net - run by ezmlm
> to unsubscribe, send mail to olug-unsubscribe at bstc.net
> or `mail olug-unsubscribe at bstc.net < /dev/null`
> (c)2001 OLUG http://www.olug.org
>
> -_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_

-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_

For help contact olug-help at bstc.net - run by ezmlm
to unsubscribe, send mail to olug-unsubscribe at bstc.net
or `mail olug-unsubscribe at bstc.net < /dev/null`
(c)2001 OLUG http://www.olug.org

-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_-_