[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: is it secure enough



my 2 bits:

I can't see any quotas enabled. You have to mount anything that can be
filled from the outside (mail,ftp,news) on quota-limited directories.
Otherwise, someone can fill your machine overnight until it chokes.

For port checking, get satan, and run it. Make sure it does not get loose
on the internet (use it from another machine on the internet towards your
machine, not the other way around).

On Mon, 19 Jan 1998, Erez Doron wrote:

> I've used my linux as firewall.
> 
> i have one ip connected to the internet.
> i use ip-masq for internal computers
> i use ipfwadm to disable ip-spoofing
> i use /etc/hosts.allow & /etc/hosts.deny to allow only local computers
> 
> 
> i should menstion here, that the linux-firewall is
> a fully oprational machine ( i.e. mail, nfs, web, ftp , ... )
> 
> the question is : is it secure enough ? are there aother things
> i should know of or do ?
> 
> btw: i use redhat4.2, kernel 2.0.33. any need to upgrade ( to RH5.0 ? )
> 
> Regards
> Erez.
> 
> 
> 
> 
> 
> 
>