[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: How to block telnet access.
So, looking for some security HOWTO/Tutorials ? ...
** First, there's an "official" security HOWTO at LDP local mirror site:
http://www.cs.huji.ac.il/support/docs/Linux/mdw/HOWTO/Security-HOWTO.html
** Check out the following links. They're a bit not-Linux-oriented and possibly a
bit out dated, but really nice:
http://www.alw.nih.gov/Security/Docs/admin-guide-to-cracking.101.html
http://all.net/books/berferd/Sec2.html
LASG recommended in previous the message might prove really useful as it's updated
(kernel 2.2.x and RH oriented).
I also recommend you to learn to use the TCP wrapper, as its a powerful good tool
which is quite easy to learn. (if this is the case, meaning you haven't regularly
used the tool till now, contact me for a few quick tips which will make you
entrance easier).
Boaz.
"Stanislav Malyshev a.k.a Frodo" wrote:
> M>> Is there a way to control the server time and process that they are using ?
>
> /etc/security/limits.conf
>
> M>> So they could not simply run something that will crush my system ?
> M>> Can i limit their access to the network ? So they could not use sniffy in
> M>> order to sniff my passwords ?
>
> Sniffer requires root access. If they are root, system is theirs, not
> yours, anyway. If they aren't, they can't run sniffer.
>
> M>> Most importent...is there any HOWTO that will explain all of this security
> M>> holes and how to fix them ?
>
> Well, about *all* - such a HOWTO would be valued as much as his bytesize
> in gold bricks :) But you may try LASG - Linux Admin Security Guide. Can
> be taken from http://ths000.tau.ac.il/lasg/, for example.
>
> --
> frodo@sharat.co.il \/ There shall be counsels taken
> Stanislav Malyshev /\ Stronger than Morgul-spells
> phone +972-3-9316425 /\ JRRT LotR.
> http://sharat.co.il/frodo/ whois:!SM8333
>
> =================================================================
> To unsubscribe, send mail to linux-il-request@linux.org.il with
> the word "unsubscribe" in the message body, e.g., run the command
> echo unsubscribe | mail linux-il-request@linux.org.il
=================================================================
To unsubscribe, send mail to linux-il-request@linux.org.il with
the word "unsubscribe" in the message body, e.g., run the command
echo unsubscribe | mail linux-il-request@linux.org.il