Nick Croft wrote:
>
> They broke into my debian machine
... and this is supposed to generate a bunch of "SlackHatStormgenyix is
better than debian because it's more secure" calls.
No, kiddies.
I use RedHat because that's what I'm used to. RedHat have an updates
FTP site (mirrored at mirror.aarnet.edu.au) where, for each of their
distributions, updates are posted fairly quickly after security bugs
(root compromise or denial of service) are found. I'm sure that most
of the other distribution vendors do the same.
The trick is to keep your distro up to date by _actually_using_ these
updates. They are put there for a reason, especially those that allow
remote root compromise.
I have a couple of scripts that mirror these updates, apply them to my
copy of the RH distro at home, mirror that out to the bunch of 30 or so
other machines that I monitor the security of, and when necessary I run
around and apply these patches.
www.securityfocus.com is your friend, as is the updates mirror site
for whatever distro you use. If you don't do the updates and you are
connected to the internet then you run at your peril ... no matter what
distro or OS you use (debian, Slackware, RedHat, Windows NT, or even
AIX or Solaris).
----+------------------------+--------------------------
Del | mailto:[EMAIL PROTECTED] | Christchurch, New Zealand
----+------------------------+--------------------------
--
SLUG - Sydney Linux User Group Mailing List - http://slug.org.au/
More Info: http://slug.org.au/lists/listinfo/slug
