[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [cobalt-security] Securing Admin Pages

Subject: Re: [cobalt-security] Securing Admin Pages
From: Eugene Crosser <crosser@xxxxxxxxxxx>
Date: Fri, 22 Feb 2002 01:14:04 +0300 (MSK)
List-id: Mailing list for users to address network security on Cobalt products. <cobalt-security.list.cobalt.com>

On Thu, 21 Feb 2002 01:05:34 -0800 (PST) duncan gray <duncanrobertgray@xxxxxxxxx> wrote:

> Ive recently just had one of my websites hacked on my
> server I have know Idea how as I thought my server was
> pretty secure, As I've kept up to date with all the
> latest patches, switched my tellnet over to SSH, and
> so forth, my bigest guess is that you have to pass the
> root password to the machine while logging in over the
> Web admin pages, this scare me some what.  But raises
> some questions in my mind.

Enable SSL on your primary site, this will automatically
make admin interface ssl-secured too, so nobody will be
able to snoop the password.

Eugene

References:
- [cobalt-security] Securing Admin Pages
  - From: duncan gray

Prev by Date: [cobalt-security] Re: cobalt-security digest, Vol 1 #680 - 4 msgs
Next by Date: [cobalt-security] self issue of certificates
Previous by thread: Re: [cobalt-security] Securing Admin Pages
Next by thread: Re: [cobalt-security] Securing Admin Pages

Sun Cobalt Security Message Index

Sun Cobalt Security Thread Index