Date: Mon, 1 Mar 2004 19:34:57 +0100 From: db <db@traceroute.dk> To: bookman@oteglobe.net, security@freebsd.org Subject: Re: General Security Issues Message-ID: <20040301193457.0afe52e6@main.trunet.dk> In-Reply-To: <DNENIGNODKCOJCLIAEICGEMDDHAA.bookman@oteglobe.net> References: <DNENIGNODKCOJCLIAEICGEMDDHAA.bookman@oteglobe.net>
next in thread | previous in thread | raw e-mail | index | archive | help
On Mon, 1 Mar 2004 16:48:07 +0200 "Konstantinos Fotiadis" <bookman@oteglobe.net> wrote: > The box has no services running expect apache and we telnet to it via > SSH. Main function of this box will be graphing various interfaces via > rrdtool. So, I would like to ask if there is any other precautions > that I must take in order to sleep safe at night. Should I check for > any other opened ports ? sockstat -l -4 >Should I do something with the kernel to be > more secure ? I know this ain't so easy, but let's say my main scope > is to get a least a decent sleep :-) Try these ports (all under "security"): lockdown chkrootkit portaudit tripwire snort freebsd-update just to name a few. Of course you should read about OpenSSH and Apache security and keep them up to date. Maybe even run sshd at some high port like 56789? br db
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20040301193457.0afe52e6>