[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [cobalt-security] what do I do now!
- Subject: Re: [cobalt-security] what do I do now!
- From: "Eugene Crosser" <crosser@xxxxxxxxxxx>
- Date: Tue, 15 Jan 2002 14:52:46 +0300
- List-id: Mailing list for users to address network security on Cobalt products. <cobalt-security.list.cobalt.com>
> Can anyone tell me what are my next steps with regards to increasing
> security on my box?
My humble suggestions:
1. Disable in the control panel all services that are not absolutely
required.
2. Try to get rid of FTP service too (e.g. make users use scp
instead) if you can afford that.
3. Configure SSL on the main server - that will make your admin
interface SSL secured, and you won't expose admin password.
4. Install intrusion detection software (tripwire, portcentry,...)
5. Build and install SSL enabled versions of POP3 and IMAP
servers and make your users use them instead of plain POP3/IMAP.
--
Eugene