Re: Snort on RedHat x.x

["GeEk" <koolman () visi0n net>]

Do this...


nmap -sT <your boxes IP> and any ports your see open dissable them... this
will give you a good starting point...

telnet, snmp, dns, rpc services, ntp, nfs, be sure to install TCP
Wrappers, Set up ipchians or iptables... RedHat can be secure it's all
about what the admin does to make it that way...

-- 
LinSys

http://www.visi0n.net
Unix / Security Online Info

-----

When you die and your life flashes before your eyes does
that include the part where your life flashes before your
eyes?

-----

On Mon, 10 Dec 2001, Madziarczyk, Jonathan wrote:

> Sorry for the OT
>
> I'm about to set up a Snort box in one of my DMZs using Redhat 7.2 (I'm more
> comfortable with it than with FBSD).
> I've noticed a lot of gripes about how RedHat breaks stuff and how you have
> to disable a lot of stuff to get it secure.  So my question is:
>
> 1) What are you having to disable to feel secure?  I understand the basics
> (telnet, ftp, samba) is there other stuff?
>
> 2) I notice a lot of users running RH 6.2 on their Snort box, is there valid
> argument for not going with the latest stable build?
>
> Thanks in advance for any useful advice.  ;-)
>
> Peace,
> JonM
>
> _______________________________________________
> Snort-users mailing list
> Snort-users () lists sourceforge net
> Go to this URL to change user options or unsubscribe:
> https://lists.sourceforge.net/lists/listinfo/snort-users
> Snort-users list archive:
> http://www.geocrawler.com/redir-sf.php3?list=snort-users


_______________________________________________
Snort-users mailing list
Snort-users () lists sourceforge net
Go to this URL to change user options or unsubscribe:
https://lists.sourceforge.net/lists/listinfo/snort-users
Snort-users list archive:
http://www.geocrawler.com/redir-sf.php3?list=snort-users