On Thu, 2003-04-03 at 08:44, Federico Sevilla III wrote: > As I mentioned on IRC, I recommend that we use Debian GNU/Linux 3.0r1 > with complete security updates for the SittingPenguin, unless IBM or the > organizers exert pressure to use RedHat. Why Debian? Because Debian has > an excellent track record, IMO, and the stable tree is known to be > acceptably rock solid at any given time. Furthermore I believe > SittingPenguin should be fairly representative of the type of "secure > servers" we actually use in the field. True we can hack things up to be > as rock solid as igneous rocks can get, but if we don't actually use > this kind of setup in the real world then I don't see the point other > than having bragging rights.
i agree with Jijo on this one. debian boxens are fairly secure, there is a securing debian howto, and there are debian packages that make hardening the system easier: eg, tripwire, aide, portsentry, snort, harden, etc... also worth a look: http://www.trusteddebian.org/ although not entirely a good idea, maybe we should also look at the beta kernels (2.5.66?). iirc, they provide some security and cryptography options... halted boxens anyone? ;)
signature.asc
Description: This is a digitally signed message part
