> > > Keeping your OS on a separate partition from your web
> > > content is a good thing to do from a security standpoint.
> >
> > Why? As I mentioned in another response, security is handled
> > at the file system level, not at the partition level.
>
> It's a "weak" security enhancement, but it can potentially
> enhance security.
> Much like renaming the Administrator account, it can make attacks more
> difficult without preventing those attacks.
>
> Again, given the typical amount of time spent on average
> securing NT/IIS
> servers, I'd try to push people into doing the easy things
> before doing the
> harder ones.
I couldn't agree with Dave more. Partitioning is a tremendously simple
thing to do. And there are some compelling reasons to do it. Read deja.
Do a search on PoizonBOx.
Or take a look at the following CERT advisories:
http://www.cert.org/advisories/CA-2001-11.html
http://www.kb.cert.org/vuls/id/111677
The script hacks that have defaced so many websites in the past few weeks
would have been avoided with partitioning. So... why not?
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Structure your ColdFusion code with Fusebox. Get the official book at
http://www.fusionauthority.com/bkinfo.cfm
------------------------------------------------------------------------------
To unsubscribe, send a message to [EMAIL PROTECTED] with
'unsubscribe' in the body or visit the list page at www.houseoffusion.com
