| All cracking happens at the application layer. Try breaking into a box
| running no services, and not running idiotic client applications like
| IE/OE/O.
Cracking can also happen at packet level.
Spoofing and Denial of service is a common example.
|No firewall is going
|to protect a public unpatched IIS server.
This depends on the hacker. If the hacking method is know to the firewall,
it will filter out those packets after monitoring the content and will not
let that know method reach the unpatched IIS server.
But if it is a new method, the firewall will not know and might let that
packet through. Its like an anti-virus.
so either we patch the IIS or wait for a new version of the firewall which
might filter out the new mechanism for cracking.
I have to run 2 linux servers for
1. as a DNS only.
services running are
22/tcp open ssh
53/tcp open domain
what can i do to make it absolutely difficult for a cracker to crack it, but
at the same time, my DNS is running prefectly.
i have upgraded the BIND packages to the latest.
2. as a mail server
service running are
22/tcp open ssh
25/tcp open smtp
110/tcp open pop-3
143/tcp open imap2
389/tcp open ldap
3306/tcp open mysql
both the machines have iptables.
what would be a quick summary to keep my machines secure.
Arvind
-------------------------------------------------------
Sponsored by:
ThinkGeek at http://www.ThinkGeek.com/
_______________________________________________
linux-india-help mailing list
[EMAIL PROTECTED]
https://lists.sourceforge.net/lists/listinfo/linux-india-help
