I thouth that is was interesting . From an infoworld security nesletter I subscribe to :
************************************************ <snip> The ISS report estimates that it takes, on average, less than a day for a vulnerable system on the Internet to be compromised. From what I've seen, that should be less than one hour. The Apache system I set up was also running unpatched versions of Wu-FTPd and openssh. Someone compromised it within an hour using an openssh exploit. <snip> Additionally, security needs to provide defense-in-depth -- implementing multiple layers of security that stop a wide variety of malicious activity. Firewalls are not enough. ISS states that more than 70 percent of attacks were launched through port 80, typically wide open on most firewalls. So, networks and servers need additional protection layers to further prevent and mitigate security risks. I will be addressing many of these issues in the future, providing tips and tricks along the way. If you have any creative or cost-effective approaches to security, let me know! Mandy Andress ([EMAIL PROTECTED]) covers security and networking for the Test Center. - - - - - - - - - - - - - - - - - - - - - - - - - - - - MORE SECURITY ADVISER For a complete archive of her InfoWorld columns visit http://www2.infoworld.com/cgi/component/columnarchive.wbs?column=swatchandress ************************************************** moral: make sure you keep up with updates. Bret _______________________________________________ Redhat-list mailing list [EMAIL PROTECTED] https://listman.redhat.com/mailman/listinfo/redhat-list
