Tim,
Hey... People often repleat things that they've heard from other people. Were
I you, Id ask him how people can do this (maybe he knows something you/we
dont!). If your going by the premise that windows doesnt do much that can be
exploited... then in some sence, he's right (can exploit a webserver that
doesnt exist on a windows95 box can you?). If he's talking about windows
servers (IIS) vs linux servers... hes just plain wrong. Any server can be
setup to be completely unsecure, windows does this by default, in general,
linux servers by default are quite secure, but you need to enable more things
to use these services.
Being behind a firewall doenst guarantee your not exploitable, but its a good
step. Its never a good idea to run services that you dont need (why add
possible exploits...)
It might be worth telling him to try to attack your machine, he will need
your public ip address (not the private net ip, that wont help him!)
While he's trying to hack your machine... run some scans on his :) try google
for Intrusion Detection, and you will find lots of neet stuff :)
Jamie
On Tuesday 07 January 2003 05:54 pm, Timothy Bolz wrote:
: I had a person who is a Cisco certified network guy tell me unix boxes are
: easier to get into than windows. He's very knowledgeable and says he's one
: of 5000 certified in the world. I don't know if he's worked in Linux or
: not. My box at work is a Debian GNU/Linux box and he knows the ip address
: of it. He said a hacker could gain access to it if they know the ip
: address. I said I have ipchains installed. My question is that enought or
: do I have to close down the ports too. He thinks someone could gain
: access to my box even though I'm running Linux with ipchains. He ruffled
: my feathers and I don't like it, especially when I don't know how to
: respond to someone who might know. What I'm saying is my box is on a
: private network 192.168.x.x which other people on that network who I don't
: know get on. What can I do to protect my box besides turning it off at
: night or unplugging it from the network. Any links or pointers would be
: helpful.
:
: Thanks
: Tim
:
: _______________________________________________
: Eug-LUG mailing list
: [EMAIL PROTECTED]
: http://mailman.efn.org/cgi-bin/listinfo/eug-lug
--
No microsoft products were used to produce this message.
EUG-LUG Mailing List:
http://mailman.efn.org/cgi-bin/listinfo/eug-lug
_______________________________________________
Eug-LUG mailing list
[EMAIL PROTECTED]
http://mailman.efn.org/cgi-bin/listinfo/eug-lug
