[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[cobalt-security] Making my Raq4 a securer system
- Subject: [cobalt-security] Making my Raq4 a securer system
- From: "Michelle A. Hoyle" <michelle@xxxxxxxxxxxxx>
- Date: Tue, 7 Nov 2000 21:33:32 +0000
- List-id: Mailing list for users to address network security on Cobalt products. <cobalt-security.list.cobalt.com>
Suppose that I'm a reasonably competent auto-magically installs kind
of installer, am comfortable wandering around my Raq via the shell,
but I'm not a Linux administration/security genius by any stretch of
the imagination. I want to make my Raq4 more secure but without
making the machine almost impossible to use.
1) It is serving out multiple domains, from multiple countries, so
users come from all over the place.
2) I've already disabled telnet and installed ssh. As few people as
possible have access via ssh -- myself, and our UNIX-based
developers. No clients have shell access of any kind.
3) All site administration is done via my site certificate for the Raq.
4) I believe the Raq4 already has the proftpd and qpopper updates to
solve those particular known problems.
My questions are:
1) What should I be installing?
2) What does it do, briefly?
3) Once I install it, what do I need to do with it to improve the
security of my site?
I know these are naive sorts of questions, but I don't really want to
learn this the hard way, after the fact, so any pearls of wisdom you
care to impart would be welcomed!
Thanks for your help
Michelle A. Hoyle
--
----| TRANSCENA DESIGN |----------------------------
Michelle A. Hoyle, VP Web Technologies, Canada
#801 T.D. Tower, Edmonton, Alberta, Canada T5J 2Z1
N. America: 1-888-429-2363 | UK: 020 7529 1465
International: +1 780 429 2363
------------------| internet design architects |--------