Paris Lundis wrote: > so what exactly is Qchain... go here to download it :) > http://www.webattack.com/get/qchain.shtml > > Thanks for the find.. does it work under NT though as well :)
Yes, used to use it, but haven't done so since the latest Security Rollup Package anymore. > Outside of that, keeping the boxes current and healthy does require patching > and reboots... hardening a box can hardly be true wherein such is littered > with buffer overflows and other things that are the basis of service > provision... How many buffer overflows and other provisions has IIS had? I believe the last one is from fall 2000, after that is was all ASP and ISAPI. > Needless to say, there are some better planning that everyone might take and > apply to minimize risk... However, in the real world and in a diversified > environment, like well, service provision to third parties, turning > everything off isn't a solution. I believe that with proper setup there is very little to turn off. The only thing that is is there to turn off for us is due to bugs in CF. > Perhaps part of the problem here is the granularity within the GUI to > manipulate, disable and enable individual services and sub-elements. Unix > systems, although a large learning curve, allow for unlimited granularity... > if you don't like something or in worst case scenario you can patch it > yourself or remove things. Unlimited granularity? Could you please tell me how I can manage my groups like I do in Windows (with nested groups and memberships) in Unix? I believe that the common Unix security model is actually a completely stripped down version of the VMS security model. That was so granular and powerfull that it also was so complex that it was nearly impossible to implement it correctly. Something like the Windows Security model. But of course after initial setup I never use a GUI to manage security settings :) Jochem ______________________________________________________________________ Structure your ColdFusion code with Fusebox. Get the official book at http://www.fusionauthority.com/bkinfo.cfm ------------------------------------------------------------------------------ To unsubscribe, send a message to [EMAIL PROTECTED] with 'unsubscribe' in the body or visit the list page at www.houseoffusion.com
