Full Disclosure mailing list archives
Re: a secure base system
From: Nico Golde <nion () gmx net>
Date: Mon, 15 Mar 2004 15:57:20 +0100
Hallo harry, * harry <Rik.Bobbaers () cc kuleuven ac be> [2004-03-15 15:14]:
- use debian testing (stable is too old, unstable is ... well... you know ;))
yes, unstable works well :) with testing your system isn't secure.
- maybe allow ssh (no root logins)?
you can use ssh. a remote root shell have to be forbidden.
==> is this ok, too paranoia or is there somenting i'm missing, and cound it be even more safe?
iptables
how about a compiler? normally, all soft on it is compiled by hand, but it is also "necessary" for a local exploit. any ideas? remarks?
i don't understand the question. regards nico -- Nico Golde | nico () ngolde de | 310777820@ICQ | nion () gmx net http://www.ngolde.de | GnuPG Key: http://www.ngolde.de/gpg/nico_golde.gpg Fingerprint | FF46 E565 5CC1 E2E5 3F69 C739 1D87 E549 7364 7CFF echo "[q]sa[ln0=aln256%Pln256/snlbx]sb729901041524823122snlbxq"|dc
Attachment:
_bin
Description:
Current thread:
- Re: a secure base system, (continued)
- Re: a secure base system Ron DuFresne (Mar 15)
- Re: a secure base system Maikel Verheijen (Mar 15)
- Re: a secure base system Fabrice MARIE (Mar 15)
- RE : a secure base system -> ADAMANTIX Abdelkader ALLAM (Mar 15)
- Re: a secure base system martin f krafft (Mar 15)
- Re: Re: a secure base system Tobias Weisserth (Mar 15)
- Re: Re: a secure base system martin f krafft (Mar 15)
- Re: Re: Re: a secure base system Tobias Weisserth (Mar 15)
- Re: Re: Re: a secure base system martin f krafft (Mar 15)
- RE : a secure base system -> ADAMANTIX Abdelkader ALLAM (Mar 15)
- Re: a secure base system Alexander Bartolich (Mar 15)
- Re: a secure base system Valdis . Kletnieks (Mar 15)
- Re: a secure base system martin f krafft (Mar 15)
- Re: Re: a secure base system Tobias Weisserth (Mar 15)