On 24 Jul 00, at 10:04, Mukund Deshmukh wrote:
> The best security is to disconnect the box from net and put it in Swiss bank
> ;-)) Now you have to explain what this box is supposed to do and what
I don't think this is secure. If a person does not have the capability to
monitor his/her machine when he/she has a choice to be online, it is
/really/ doubtful whether he/she will fail to screw it up when
disconnected. Security is a measure of how paranoid you are and how you
choose to cement this paranoia.
> these services. No machine in the entire net fully secured as hackers are
> always on look out for exploits and are much smarter than server admins. The
I beg your pardon. BTW, please brush up on what a "hacker" is. ESR's hacker
howto or something like that will be at http://www.tuxedo.org/esr/. And in
a majority of the cases, these exploits are reported by
testers/administrators rather than crackers. And if a cracker was smarter
than most server admins, I wonder how these explois would ever be detected!
> BTW the kernel has very little to do with security. Linux as such is very
> secured OS but the fault lies with server admin who are ignorant or
> careless.
To say that that the kernel has nothing to do with security may not be
entirely correct. What if it causes memory/buffer overflows?
Rgds
========================================================================
Sthitaprajna | (at)mailandnews(dot)com | PGP:619E875D
Fingerprint:9A4F 8E01 A4A5 EA1A 41D2 AD1E 75BC 6F0B 619E 875D
"When everything comes your way, you're on the wrong lane"
----------------------------------------------------------------------
Check out the 'What to do before posting to the list' site
for a list of things to try before posting. The site is
at http://botsie.tripod.com/beforeposting/
