Charles Pinheiro spewed itno the ether:
>I need to secure my linux server 6.1 to the max possible so no one could
>have unauthorised entry and try to use my server to IP Port scan any other
>server. How do I go about it???
You only want to stop portscanning? Portscanning is not attacking,
and for me, is borderline acceptable.
<Stops intended rant about hostile activities>
Simple solution to your problem:
1a> Power off the machine, or
1b> Power off your modem
More complex solution:
2> Write a set of ipchains rules to harden your machine.
(you might want to check out Bastille-Linux and PMFirewall)
Remove everything your don't need from your machine
(rpm -e is your friend)
Comment out everything in /etc/inetd.conf
Also turn off inetd. (/etc/rc.d/init.d/inet stop)
Repeat with every service in /etc/rc.d/init.d/
[If not already removed]
Then apply the latest patches to your system. Read Bugtraq
(http://www.securityfocus.com) religiously, and follow the
recommendations.
Install something like Tripwire ( http://www.tripwire.com )
This should do for a start.
Remember, security is not a one time solution, it is a way of life.
Devdas Bhagat
------------------------------------------------------------
For Valentine's Day shop by Brand, Product, Price, Store and Location!
http://shop.storerunner.com/shop.asp?pdef=home&trsid=3080
----------------------------------------------
An alpha version of a web based tool to manage
your subscription with this mailing list is at
http://lists.linux-india.org/cgi-bin/mj_wwwusr
