Next message: Douglas Trainor: "[LUNI] VMware and the NSA"
On Wednesday 31 January 2001 13:39, root wrote:
> As we are limited with our hardware, I was wondering if anyone has
> experience in setting up a RH7 server for handling a firewall as well as a
> non-anon ftp server. I have heard that this should not ideally be done. I
> would love to hear your experiences both good and bad. Also, does anyone
> know of any known (and unknown ;) security holes.
>
> Thanks,
>
> Michael McGonagle
If you are in the Chicagoland, there are two major computer shows, where you
could (possibly) pick up an older system for $100-200 depending on it's
vintage. Use the box as your non-anon ftp server. I believe RH uses wu-ftpd
by default - I have seen more advisories in wu-ftpd compared to it's cousins
Proftpd and the port of ftpd from OpenBSD.
Before connecting the box to the Internet; disable all unnecessary services
and remove their respective RPMs. Use the Bastille Linux scripts to 'harden'
your RH7 install. Scan the box using Saint to see if it can detect any
vulnerablities. Visit RH web site often and look up their security
advisories.
HTH and Luck!
--
A. Khan
-=-
Linux Users Of Northern Illinois: General Discussion Mailing list.
For unsubscription, archives, and announcements only see http://luni.org
This archive was generated by hypermail 2b29
: Thu Feb 01 2001 - 11:42:27 CST