RE: [cobalt-security] [RaQ3i] Firewall Software Now Tripwire

["Chris Mason" <chris@xxxxxx>]

I don't beleive there is any difference in the files.
I had a ton of editing to get it to work without errors, I can send you the
policy file as a good place to start - took me a whole sunday to get rid of
the superflous entries.

Chris Mason
Box 340, The Valley, Anguilla, British West Indies
Tel: 264 497 5670 Fax: 264 497 8463
USA Fax (561) 382-7771
Take a virtual tour of the island
http://net.ai/ The Anguilla Guide
Find out more about NetConcepts
www.netconcepts.ai
Talk to me in real time with Instant Messenger: masonc92@xxxxxxxxxxx
Signature
F331 8AD1 36FB B3B0 DF9F  D95B 8024 D1EA 7450 D50C

-----Original Message-----
From: cobalt-security-admin@xxxxxxxxxxxxxxx
[mailto:cobalt-security-admin@xxxxxxxxxxxxxxx]On Behalf Of Frank
Cubillos
Sent: Tuesday, February 20, 2001 10:46 AM
To: cobalt-security@xxxxxxxxxxxxxxx
Subject: RE: [cobalt-security] [RaQ3i] Firewall Software Now Tripwire



<snip>
Not exactly.
Ipchains will be active but then it needs to be configured.
By far the easiest firewall utility that 'front-ends' for
Ipchains is Pmfirewall.
http://www.pmfirewall.com/PMFirewall/
You'll need to be careful when you run through the PM install
and have a rudimentary knowledge of which ports and IP's you
want to deny or allow.
As many have mentioned before in other posts a good base start at
securing your server is:
Portsentry
LogCheck
PMFirewall
Ipchains
TripWire
SSH: Updated
Bind: Updated
ProFTPd: Updated
--
Question on the TripWire, which version should be installed on a RaQ3i?
Tripwire Open Source RPM 3.0 (Red Hat 5.x-6.2.x)
Or
Tripwire Open Source RPM 4.0 (Red Hat 7.x)?
TIA
Frank
_______________________________________________
cobalt-security mailing list
cobalt-security@xxxxxxxxxxxxxxx
http://list.cobalt.com/mailman/listinfo/cobalt-security