[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[cobalt-security] Portsentry configuration

Subject: [cobalt-security] Portsentry configuration
From: Francisco Sánchez <lists@xxxxxxxxxxxxx>
Date: Tue, 15 Jan 2002 21:55:41 +0100
List-id: Mailing list for users to address network security on Cobalt products. <cobalt-security.list.cobalt.com>

Hello

In the portsentry.conf file of my RaQ3 I have the following options
activated:

KILL_ROUTE="/sbin/route add -host $TARGET$ reject"

KILL_ROUTE="/sbin/ipchains -I input -s $TARGET$ -j DENY -l"

However I have noted that ipchains is not installed in my system.  Has
anyone it installed by default?  Else, is it any package or rpm available
for the RaQ3?

Besides keeping up to date with patches and so on, I have also disabled ftp
and telnet in my server.  Now I would like to set up SSL for pop3 and
disable imap.  Any recommendations for this?

I wonder if those many people who claim that they have had their RaQ hacked
had any security measures applied before it happened or they just woke up
after the hack?  Comments on this would be appreciated as it would show
whether most hackings are the result of no security policies or a weakness
of the server.

Regards,

Francisco

Follow-Ups:
- Re: [cobalt-security] Portsentry configuration
  - From: Gerald Waugh

Prev by Date: RE: [cobalt-security] what do I do now!
Next by Date: Re: [cobalt-security] Portsentry configuration
Previous by thread: RE: [cobalt-security] what do I do now!
Next by thread: Re: [cobalt-security] Portsentry configuration

Sun Cobalt Security Message Index

Sun Cobalt Security Thread Index