Date: Mon, 1 Mar 2004 19:34:57 +0100 From: db <db@traceroute.dk> To: bookman@oteglobe.net, security@freebsd.org Subject: Re: General Security Issues Message-ID: <20040301193457.0afe52e6@main.trunet.dk> In-Reply-To: <DNENIGNODKCOJCLIAEICGEMDDHAA.bookman@oteglobe.net>
index | next in thread | previous in thread | raw e-mail
On Mon, 1 Mar 2004 16:48:07 +0200 "Konstantinos Fotiadis" <bookman@oteglobe.net> wrote: > The box has no services running expect apache and we telnet to it via > SSH. Main function of this box will be graphing various interfaces via > rrdtool. So, I would like to ask if there is any other precautions > that I must take in order to sleep safe at night. Should I check for > any other opened ports ? sockstat -l -4 >Should I do something with the kernel to be > more secure ? I know this ain't so easy, but let's say my main scope > is to get a least a decent sleep :-) Try these ports (all under "security"): lockdown chkrootkit portaudit tripwire snort freebsd-update just to name a few. Of course you should read about OpenSSH and Apache security and keep them up to date. Maybe even run sshd at some high port like 56789? br dbhome | help
Want to link to this message? Use this
URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20040301193457.0afe52e6>