[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [cobalt-security] Securing Admin Pages
- Subject: Re: [cobalt-security] Securing Admin Pages
- From: Eugene Crosser <crosser@xxxxxxxxxxx>
- Date: Fri, 22 Feb 2002 01:14:04 +0300 (MSK)
- List-id: Mailing list for users to address network security on Cobalt products. <cobalt-security.list.cobalt.com>
On Thu, 21 Feb 2002 01:05:34 -0800 (PST) duncan gray <duncanrobertgray@xxxxxxxxx> wrote:
> Ive recently just had one of my websites hacked on my
> server I have know Idea how as I thought my server was
> pretty secure, As I've kept up to date with all the
> latest patches, switched my tellnet over to SSH, and
> so forth, my bigest guess is that you have to pass the
> root password to the machine while logging in over the
> Web admin pages, this scare me some what. But raises
> some questions in my mind.
Enable SSL on your primary site, this will automatically
make admin interface ssl-secured too, so nobody will be
able to snoop the password.
Eugene