On 30/04/02 07:13 -0700, Peter Green wrote: > i also think so .. > > but my root password is only know for me and it is > shadowed (and md5 ) So you are running a weak application somewhere. > what else will be the chance for the leakout of root > password. > if reinstalling what shoould i consider (not to repeat > the same cracking again0 The same standard rules: Build a box with only what you need. Patch it to the limits, and then double check. Install a local firewall. Install logchecking software. Install tripwire, build a local db and move it to readonly media. Watch those logs. Stay current on updates. Never forget: Security is a process, not a product. You have to close all possible holes, your opponent needs one. Patch.
> only ssh ,ftp is open. > if i stop sshd then will it be somewhat secure. Which ftpd? All versions of wu-ftpd are supposed to be vulnerable, as are non current versions of openssh. Switch to a better ftpd than wu-ftpd, or better still use scp. Devdas Bhagat _______________________________________________ linux-india-help mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/linux-india-help
