[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [cobalt-security] what do I do now!

Subject: Re: [cobalt-security] what do I do now!
From: "Eugene Crosser" <crosser@xxxxxxxxxxx>
Date: Tue, 15 Jan 2002 14:52:46 +0300
List-id: Mailing list for users to address network security on Cobalt products. <cobalt-security.list.cobalt.com>

> Can anyone tell me what are my next steps with regards to increasing
> security on my box?

My humble suggestions:

1. Disable in the control panel all services that are not absolutely
   required.
2. Try to get rid of FTP service too (e.g. make users use scp
   instead) if you can afford that.
3. Configure SSL on the main server - that will make your admin
   interface SSL secured, and you won't expose admin password.
4. Install intrusion detection software (tripwire, portcentry,...)
5. Build and install SSL enabled versions of POP3 and IMAP
   servers and make your users use them instead of plain POP3/IMAP.

-- 
Eugene

Prev by Date: [cobalt-security] what do I do now!
Next by Date: Re: [cobalt-security] what do I do now!
Previous by thread: [cobalt-security] what do I do now!
Next by thread: Re: [cobalt-security] what do I do now!

Sun Cobalt Security Message Index

Sun Cobalt Security Thread Index