[PLUG] [off topic security]

Rich Shepard rshepard at appl-ecosys.com
Sun Oct 21 23:49:33 UTC 2007


On Sun, 21 Oct 2007, drew wymore wrote:

> I was following the recent security thread and it got me wondering. What
> do other pluggers do to secure their systems? Is just upgraded packages as
> they come out enough for you? Do you have crazy IPTables rules, maybe
> snort, Bastille or Tripwire?

   SOHO here. I use a Netgear firewall appliance and turn on only those
services that are absolutely needed. I also install all distribution
upgrades for packages I have installed. SSH allows only named users to
remotely log in; root's not one of them. Telnet is disabled. There may be
more, but the rest are not immediately recalled.

Rich

-- 
Richard B. Shepard, Ph.D.               |    The Environmental Permitting
Applied Ecosystem Services, Inc.        |         Accelerators(TM)
<http://www.appl-ecosys.com>     Voice: 503-667-4517      Fax: 503-667-8863



More information about the PLUG mailing list