On Tue, 20 Nov 2001, Shannon Kelley wrote: > Greetings Everyone, > > I have been working to try to come up with a security design for a > remote webserver I administer. Now I will admit I am still rather new > at this whole adventure into network security I figured I'd ask the > subscribers of this list for any suggestions or feedback on what I'm > trying to do. First a little system Specs > > Redhat 7.2 Server Running Apache (As Apache) > Pure-Ftpd FTP Daemon Running in virtual Directory Mode.
Well ... Redhat 7.2 isn't a very fortunate choice (no flame intended to Redhat lovers). If you want total security, choose OpenBSD. If you want a secure linux system choose Debian. If you want a desktop-machine, choose either SuSE, Redhat or Mandrake. So far for the flame, now the real advice: subscribe to bugtraq. Ofcourse, configuring your filepermissions to optimum will increase your security, but if you don't apply patches fast, you will get hacked. Read bugtraq, read it often, and apply patches as fast as they appear on the ftp mirrors. Just my 2 cents, Johannes -- /===================================\ /====================================\ | Johannes Verelst | Email: [EMAIL PROTECTED] | | Web: http://www.verelst.net | IRC: nl.eu.slashnet.org / Gullie | +===================================/ \====================================+ |"Programming today is a race between software engineers striving to build | |bigger and better idiot-proof programs, and the Universe trying to produce| |bigger and better idiots. So far, the Universe is winning." | \==========================================================================/
