[frgeek-michiana] Re: Security on Indy

  • From: mike neuliep <mike@xxxxxxxxxxxxxxxxxxxx>
  • To: frgeek-michiana@xxxxxxxxxxxxx
  • Date: Tue, 20 May 2003 10:00:21 -0500 (CDT)

I'll look at it later today.  Probably I'd turn EVErYTHING off in
/etc/inetd.conf and install SSH2D.

        Mike

-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-
Mike Neuliep, Illiana Internet     | Providing solutions in networking, 
PO BOX 442, Dyer IN 46311          | security, bandwidth, colocation and
Cell 708-932-9547 mike@xxxxxxxxxxx | much more.  -- Cisco Certified --
-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-


On Mon, 19 May 2003, John Billings wrote:

> I turned off lpd, and installed nmap.
> What other services need to go?
> 
> On Monday 19 May 2003 10:43 pm, you wrote:
> > On Mon, 19 May 2003 21:25:10 -0500
> >
> > Tom Brown <tbrown@xxxxxxxxxxxx> wrote:
> > > Indy is probably fairly open to attacks since there is no firewall, and
> > > we're relying on the small footprint Debian install.
> >
> >    There is a fair amount that is open on the box....
> >
> >    My number one rule for securing a system. If you DO NOT need the
> > service, shut it down!
> >
> >    Number two rule for securing a system.. If you only need to dish out
> > stuff, setup a read only service!
> >
> >    Number three rule.... When in doubt, shut the service off! You can
> > always turn it back on if need be.
> >
> >    In the case of lpd (port 515) that's really not securable... Either get
> > the system behind a firewall (on a seperate box) or use cups. My
> > understanding is that cups is MUCH more secure then lpd.
> >
> >    Just my two cents worth....
> >
> > > II will register a domain name this week and transfer our web site shtml
> > > to Indy. Aolserver 3.x deprecated SSI, but there is a substitute
> > > (ns_adp_include). So I should be able to rework the html accordingly.
> > > I'll find out what it takes for Michiana Freenet to redirect to Indy once
> > > we're ready.
> > > Tom
> >
> >     Sounds exciting....
> >
> >    Goose
> >
> >
> > To post to the list send email to <frgeek-michiana@xxxxxxxxxxxxxx>
> >
> > You may unsubscribe or change your list settings by going to the list
> > website at <//www.freelists.org/webpage/frgeek-michiana>
> 
> 
> 
> To post to the list send email to <frgeek-michiana@xxxxxxxxxxxxxx>
> 
> You may unsubscribe or change your list settings by going to the list website 
> at <//www.freelists.org/webpage/frgeek-michiana>
> 



To post to the list send email to <frgeek-michiana@xxxxxxxxxxxxxx>

You may unsubscribe or change your list settings by going to the list website 
at <//www.freelists.org/webpage/frgeek-michiana>

Other related posts:

  1. Home
  2. frgeek-michiana
  3. Archive
  4. 05-2003