Snort mailing list archives
Re: Snort on RedHat x.x
From: "GeEk" <koolman () visi0n net>
Date: Mon, 10 Dec 2001 13:37:31 -0500 (EST)
Do this... nmap -sT <your boxes IP> and any ports your see open dissable them... this will give you a good starting point... telnet, snmp, dns, rpc services, ntp, nfs, be sure to install TCP Wrappers, Set up ipchians or iptables... RedHat can be secure it's all about what the admin does to make it that way... -- LinSys http://www.visi0n.net Unix / Security Online Info ----- When you die and your life flashes before your eyes does that include the part where your life flashes before your eyes? ----- On Mon, 10 Dec 2001, Madziarczyk, Jonathan wrote:
Sorry for the OT I'm about to set up a Snort box in one of my DMZs using Redhat 7.2 (I'm more comfortable with it than with FBSD). I've noticed a lot of gripes about how RedHat breaks stuff and how you have to disable a lot of stuff to get it secure. So my question is: 1) What are you having to disable to feel secure? I understand the basics (telnet, ftp, samba) is there other stuff? 2) I notice a lot of users running RH 6.2 on their Snort box, is there valid argument for not going with the latest stable build? Thanks in advance for any useful advice. ;-) Peace, JonM _______________________________________________ Snort-users mailing list Snort-users () lists sourceforge net Go to this URL to change user options or unsubscribe: https://lists.sourceforge.net/lists/listinfo/snort-users Snort-users list archive: http://www.geocrawler.com/redir-sf.php3?list=snort-users
_______________________________________________ Snort-users mailing list Snort-users () lists sourceforge net Go to this URL to change user options or unsubscribe: https://lists.sourceforge.net/lists/listinfo/snort-users Snort-users list archive: http://www.geocrawler.com/redir-sf.php3?list=snort-users
Current thread:
- Snort on RedHat x.x Madziarczyk, Jonathan (Dec 10)
- Re: Snort on RedHat x.x GeEk (Dec 10)
- Re: Snort on RedHat x.x James Garrison (Dec 10)
- RE: Snort on RedHat x.x Ricardo Londono (Dec 10)
- Message not available
- Re: Snort on RedHat x.x J. Craig Woods (Dec 10)
- Re: Snort on RedHat x.x GeEk (Dec 10)
- Re: Snort on RedHat x.x J. Craig Woods (Dec 10)
- <Possible follow-ups>
- RE: Snort on RedHat x.x Madziarczyk, Jonathan (Dec 10)