Hi ae,
I think some of your comments are not exactly correct. OpenBSD is
secure by default because no services running, as soon as you activate
httpd or alike the actual daemon is what will be the problem not the
under lying OS.
As for RedHat, I like it, you can make it as secure as any distro,
thats what make linux so powerful, you have control, you can either
enable or disable any services you want.
When installing RedHat choose a custom install and then check select
individual packages, if thats not control I dont know what is.
Also RedHat's distro comes with great tools by default, such as lsof,
nmap, tcpdump, tcpwrappers, sudo, ssh, xinet.d etc.. all must haves for
any box.
cheers
Ivan Coric
IT Technical Security Officer
Information Technology
WorkCover Queensland
Ph: (07) 30066414 Fax: (07) 30066424
Email: [EMAIL PROTECTED]
>>> exon <[EMAIL PROTECTED]> 07/03/03 10:13pm >>>
On Mon, 30 Jun 2003, CreativeSell wrote:
> Hi All,
>
> Having just got off an awful php host, my partner and I have decided
to get
> our own redhat server. However we are slightly apprhhensive about
ebing
> hacked to pieces. we are keeping up to date with all bugtracks and
security
> updates...what else can we do?
>
> Olly
>
Scrap the Redhat dist and go with Owl or OpenBSD instead. RedHat is
more
of a client side OS than a server, so you'll see a lot of
'userfriendly
features' that eases the management of the system, which provide
holes for attackers and won't be necessary if you intend to run it as
a
standalone server.
The more userfriendly the design, the more 'hackable' and 'DoSable' it
gets. Just have a quick look at MicroSofts products and you'll get the
point.
Cheers.
/ae
---------------------------------------------------------------------------
Evaluating SSL VPNs' Consider NEOTERIS, chosen as leader by top
analysts!
The Gartner Group just put Neoteris in the top of its Magic Quadrant,
while InStat has confirmed Neoteris as the leader in marketshare.
Find out why, and see how you can get plug-n-play secure remote access
in
about an hour, with no client, server changes, or ongoing maintenance.
Visit us at: http://www.neoteris.com/promos/sf-6-9.htm
----------------------------------------------------------------------------
***************************************************************************
Messages included in this e-mail and any of its attachments are those
of the author unless specifically stated to represent WorkCover Queensland. The
contents of this message are to be used for the intended purpose only and are to be
kept confidential at all times.
This message may contain privileged information directed only to the intended
addressee/s. Accidental receipt of this information should be deleted promptly and the
sender notified.
This e-mail has been scanned by Sophos for known viruses.
However, no warranty nor liability is implied in this respect.
**********************************************************************
---------------------------------------------------------------------------
Evaluating SSL VPNs' Consider NEOTERIS, chosen as leader by top analysts!
The Gartner Group just put Neoteris in the top of its Magic Quadrant,
while InStat has confirmed Neoteris as the leader in marketshare.
Find out why, and see how you can get plug-n-play secure remote access in
about an hour, with no client, server changes, or ongoing maintenance.
Visit us at: http://www.neoteris.com/promos/sf-6-9.htm
----------------------------------------------------------------------------
