Hi, I think that the major security holes are actually in the programs that you run, and have very little to do with the kernel itself.
Certainly I use a 2.4.1 kernel which gives me access to the wonderful new firewalling system, thus I simply block all incomming connections on the ppp0 interface. Thus no one else can even see that I'm online. Also, using programs like postfix instead of sendmail, or keeping a really tight dns setup (chroot it for example) will give you a bit more security. But the distributions only provide the tools: you have to work out how to use the tools to make a secure system. Matthew On Mon, Feb 19, 2001 at 06:11:55PM -0500, Steve Rudd wrote: > Hi! > > I am frustrated with the linux 2.2 kernel. I have had two hacks in 3 months > and I am going broke rebuilding my server. > > I went out and bought Redhat 7, and got hacked 6 weeks later. > > I have been placed in contact with a guy who wants me to use Debian. But if > it based upon the same kernel as redhat, how is it going to be more secure? > I checked and found that > > from (http://www.securityfocus.com/) > Security risks for years: 1997-2000 respectively: > Debian 3, 2, 32, 45, 12 > RedHat 6, 10, 49, 85, 20 > > So Debian is about twice as good as redhat, but that is not real reassuring. > > I am considering joining the debian family, but am a bit concerned about > security. > > Just how much more secure is Debian than redhat? > > Thanks! > > Steve Rudd > > > -- > To UNSUBSCRIBE, email to [EMAIL PROTECTED] > with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED] > > >
