[PLUG] [off topic security]
drew wymore
drew.wymore at gmail.com
Sun Oct 21 21:02:37 UTC 2007
I was following the recent security thread and it got me wondering. What do
other pluggers do to secure their systems? Is just upgraded packages as they
come out enough for you? Do you have crazy IPTables rules, maybe snort,
Bastille or Tripwire?
I'm a huge fan of LCAP http://www.securityfocus.com/tools/882 which I think
I've mentioned here before briefly. I remove the ability to change files
once I've marked them immutable which at times has been a pain but I think
its a worthwhile trade off for the security it offers. If $badguy does
manage to get in they aren't able to compromise most of the system files or
binaries that I find most important (i.e ssh, named)
So Pluggers what do you do?
Drew-
More information about the PLUG
mailing list