Re: Securing of systems....

[Crispin Cowan <crispin () WIREX COM>]

Snehal Dasari wrote:

> I was recently contacted by a ISP to build up some linux servers to act as
> their game servers.  And that's sort of my problem.
>
> Basically, these are going to be high profile machines (as far as gaming
> machines go) and I'd like to secure them as best as possible.  I play with
> linux on a personal scale, but have never deployed linux in a commercial
> environment.
>
> The question I'm asking is this:
>
> Is there any document on the net that pertains to securing a linux box used
> for commercial purposes?  I've had a look and I cannot see a document of any
> use.  There are program specific (ipchains-HOWTO) but they give you the
> indepth of it all..I'm sort of looking for a document that covers it at a
> higher level.
>
> These servers will be running multiple game servers from each unit.

Secure servers is our business.  We have two forms of products that you may be
interested in:

   * Immunix OS:  This open source product is a StackGuarded version of Red Hat
     6.2, which you can get here  http://immunix.org/
   * Immunix Secure Server Appliance:  This is a custom-built platform designed
     to be a "server for dummies".  It has a web based interface, so that
     people with pointy hair can figure out how to administer it without
     breaking security.  It is protected from intrusion by both StackGuard, and
     our new technology SubDomain  http://immunix.org/subdomain.html  You can
     read about it here  http://immunix.org/documentation.html#immunix

And no, vuln-dev is probably not the place for such a discussion.  vuln-dev
would be the place to discuss how to break Immunix :-)

Thanks,
    Crispin

--
Crispin Cowan, Chief Scientist, WireX Communications, Inc. http://wirex.com
Free Hardened Linux Distribution:                          http://immunix.org