Re: The Morris worm to Nimda, how little we've learned or gained

[Adam Shostack <adam () homeport org>]

On Mon, Jan 07, 2002 at 03:20:01PM -0500, Rich Kulawiec wrote:
| But on the upside, there are now enough tools to allow me to install
| J. Random Unix/Linux distribution and figure out what it's running,
| then start shutting down everything that I possibly can in an attempt
| to minimize the exposure.  In particular, I make a lot of use of two

| A second problem is that I'd like to avoid this entire process; but I'm
| not aware of any Unix/Linux distribution whose install procedure includes
| taking the user through a dialog that advises them what they're opening
| vs. what they're closing.

I was impressed with Mandrake 8.  Its not perfect, but their top
security level (for my latest desktop) was sufficiently tightened that
I actually moved to a more relaxed level for local file permissions.
Mandrake is Redhat and Bastille.

And OpenBSD has long been very, very tight on the network side of
things, but less so on the filesystem and setuid stuff.

-- 
"It is seldom that liberty of any kind is lost all at once."
                                                       -Hume


_______________________________________________
firewall-wizards mailing list
firewall-wizards () nfr com
http://list.nfr.com/mailman/listinfo/firewall-wizards