Problhma Security ...
Michalis Kabrianis
mkab at forthnet.gr
Mon Feb 8 15:44:44 EET 1999
On 08-Feb-99 George Daflidis-Kotsis wrote:
>
> On Mon, 8 Feb 1999, Mike Flouris wrote:
>
>> Exw ena 486 PC me RedHat poy kanei host web pages kapoias mikrhs
>> etaireias. Prin apo ligo kairo to eixan xakeriasei, eixan parei kai
>> allaksei passwords, etc. To ksanaesthsa me Redhat 5.1 (paliotera eixe
>> to 4.1) kai shmera ksanaegine h zhmia ...
>> An kapoios exei antimetwpisei paromoio problhma, poia nomizei oti
>> einai h kalyterh lysh gia to problhma.
>> Tha lythei me firewalling, 'h isws me kati pio aplo / diaforetiko ?
>
> Na baleis ena distribution me ligotera suid root programmata, na kaneis
> ton kernel recompile me firewall/IP-firewalling support, na kleiseis auta
> pou den xreiazontai apo ton inetd, osa trexoun apo ekei na trexoun mesw
> tou tcpd, na tia3eis ta /etc/hosts.{deny,allow} sou swsta kai na pairneis
> SWSTA backups. A, kai na xrhsimopoieis oso pio polu mporeis sshd kai oxi
> ta sumbatika telnet/ftp enw tautoxrona de moirazeis user accounts epanw.
>
Kai na symplirwsw kai ena cops/tiger/tripwire/saint einai kalo na elegxei to
systima sou (oxi, den kanoun ola tin idia douleia, nai ta tria prwta kanoun
"peripou" tin idia douleia). Efoson de, tha exeis katebasei olous tous
axristous daemons pou eks orismou sikwnoun ola sxedon ta linux, tha einai kai
pio eukolo na parakoloutheis apo tin bugtraq gia paradeigma ti security holes
briskontai se ayta pou trexeis.
> Auta einai h bash gia kalh asfaleia kai oxi oi malakies pou 8a akouseis
> tou stul "pane sto rootshell kai antikatesthse ta epikundina binaries"
> kai ahdies pou sunh8ws kanoun oi "hacker" tou kwlou.
>
> --
> -- George Daflidis-Kotsis -- <gdk at demon.net> -- Demon Internet Ltd. --
>
Kai bebaia, ola ta parapanw einai axrista, an den xrisimopoieis kai passwords
pou na einai asfali. Odigies yparxoun se polla simeia, alla fantazomai tis
ksereis.
-----------------------------
Michalis Kabrianis
kabrianis at hellug.gr
-----------------------------
--
====================================================================
Gia boithia (h na diagrafhte) e-mail sto majordomo at hellug.gr
Ta archives tis listas einai sto http://lists.hellug.gr
prin steilete kapoia erothsh psakte mipos exei hdh apanththei.
Gia opoiodipote problima stilte e-mail ston owner-linux-greek-users
====================================================================
More information about the Linux-greek-users
mailing list