 | | | Squeaky newbie | Squeaky newbie 2005-05-27 - By Burke, Thomas G.
Back
First thing you need to is get all the updates from redhat's site & save them
somewhere on your machine. There's a ton of them, and many are security
related. Do it, and do it now. You are officially a vulnerable box, if you're
online.
Next, turn off all unecessary services, see above, you're vulnerable.
Next, put together a good firewall. 6.x uses ipchains - a good example can be
found at http://tomii.dnsalias.com/firewall.txt - it's mine, feel free to
plagiarize, but you need to learn what it all means, so you can customize for
your needs.
Install portsentry, logwatch, logcheck, and anything else you can come up with
to send you logs of your machine's goings on, so you can keep up to date - you
want to know, as a linux box is a prime target to those 133ts (morons), as they
can open a shel account on your machine & use it to attack others' machines.
If you're using the machine as a mail server, 6.x's default sendmail install
has relaying automatically allowed, so read up on how to turn off relaying (or
allow relaying only to necessary machines) - otherwise, spammers will hijack
your server & make it look like *you* are sending the spam.
There's more, but we can get to it later... Be paranoid, they really are out
to get you.
-Tom
-- --Original Message-- --
From: redhat-list-bounces@(protected) [mailto:redhat-list-bounces@(protected)]On
Behalf Of Tom McCaffrey
Sent: Thursday, May 26, 2005 12:17 PM
To: RedHat
Subject: Squeaky newbie
Years ago, (maybe three or four?) I purchased RedHat 6.0 but never installed it.
Today I decided to give it a shot and did manage to install it (server version)
and
got it to boot up and even logged in successfully as root.
But.. this is all I've done. Don't know where to go from this point and the
manuals I
got with the program are... well... manuals.
What I am wondering is if anyone knows where I might find a tutorial that will
skip
all the blather and enlighten me as to how to set this thing up - with security.
The computer is an old Ultra, 450 Mhz with 320 MB Ram and a 10-gig HD.
There is a Kingston 10/100 in it although the install called it something else
(I forget) but
appears to work.
I have it set to dhcp (I am on a network here where I work).
I have always been a dos/windows (all flavors) user and very briefly messed
with BSD Unix
just a scoush. Not installing it - but just using the system prompt.. Pine and
just enough other
commands to be dangerous.
Thanks you for suffering my newness and TIA for any info
Tom
--
This message has been scanned for viruses and
dangerous content by NCMC, and is believed to be clean.
--
redhat-list mailing list
unsubscribe mailto:redhat-list-request@(protected)?subject=subscribe
https://www.redhat.com/mailman/listinfo/redhat-list
--
redhat-list mailing list
unsubscribe mailto:redhat-list-request@(protected)?subject=unsubscribe
https://www.redhat.com/mailman/listinfo/redhat-list
Earn $52 per hosting referral at Lunarpages.
|
|
|