At 1/27/2002 09:59 PM -0500, you wrote: >I am going to open up a system to a few folks and offer >them free hosting of their forums, and before I do this, >I want to make sure I've locked everything down. > >I know how to admin apache/php/mysql/ssh/postfix, etc, >but on my home servers behind a firewall. I'm now >looking for pointers and tips on security basics and >any sort of "gotcha's" that I need to be aware of >before I open this up to others.
Tip #1: Security should be a basic part of your life. Learn about it, implement it, improve it, each and every time you do anything. You cannot and will not quickly become truly adept at securing systems, hence you should take every opportunity to learn. Had someone suggested this to you a year ago, you'd now know everything you do *plus* enough security to feel pretty comfortable. Tip #2: If you're connected to the Internet, someone *is* out to get you. Paranoia is a necessary part of life. Other than that, just a few URL's for reference (note that all docs are usually slightly outdated, so use your own judgment always): http://www.netfilter.org/documentation/index.html http://www.linuxdoc.org http://www.robertgraham.com/pubs/firewall-seen.html http://secinf.net/info/unix/lance/linux.html http://net-security.org http://www.cert.org Tip #3: It is much easier (most of the time) to hack your way into elevated privileges (e.g. go from normal user to root) than to hack in from zero. Hence, be careful when granting any access to others. -- Rodolfo J. Paiz [EMAIL PROTECTED] _______________________________________________ Redhat-list mailing list [EMAIL PROTECTED] https://listman.redhat.com/mailman/listinfo/redhat-list
