[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [cobalt-security] what do I do now!
- Subject: Re: [cobalt-security] what do I do now!
- From: "Eugene Crosser" <crosser@xxxxxxxxxxx>
- Date: Tue, 15 Jan 2002 15:25:21 +0300
- List-id: Mailing list for users to address network security on Cobalt products. <cobalt-security.list.cobalt.com>
> > Can anyone tell me what are my next steps with regards to increasing
> > security on my box?
>
> My humble suggestions:
One thing that I forgot: first and foremost, make sure, and
check regularily that your workstation is not trojaned with a
keyboard logger!
> 1. Disable in the control panel all services that are not absolutely
> required.
> 2. Try to get rid of FTP service too (e.g. make users use scp
> instead) if you can afford that.
> 3. Configure SSL on the main server - that will make your admin
> interface SSL secured, and you won't expose admin password.
> 4. Install intrusion detection software (tripwire, portcentry,...)
> 5. Build and install SSL enabled versions of POP3 and IMAP
> servers and make your users use them instead of plain POP3/IMAP.
>
> --
> Eugene
> _______________________________________________
> cobalt-security mailing list
> cobalt-security@xxxxxxxxxxxxxxx
> http://list.cobalt.com/mailman/listinfo/cobalt-security
>
>
--
Eugene