MAKE SURE YOU HAVE THE LATEST AND GREATEST

The last thing you want to do is run a professional webhosting service
with outdated software that is exploitable. With Debian you can use
apt-get to download the latest packages for everything on your system.
With RedHat you can use up2date from the commandline. The bigger
distributions make this easy on you. Also, you don't want to run any
software that is so new that it hasn't been time-tested and proven to
be secure. I usually give packages a couple of months before I'm willing
to upgrade unless of course they fix a known vulnerability in what I'm
currently using.

Keep your kernel up to date also and patch it with the GRSecurity patch
to add increased protection. For information on how to patch your kernel
go to http://www.tldp.org/HOWTO/Kernel-HOWTO-7.html I recommend you read
the entire section on the kernel. If you jack up something here then
your system will basically be unusable or unstable at best.

LIMITING ACCESS TO SERVICES

First you will want to disable any unneeded services. cd /etc/xinetd.d/
and for any services that you dont want enabled change it so say
disable = yes. Once you have made all of the changes you need to restart
xinetd by issuing the command 'killall -HUP xinetd' Some other directives
you may want to use include the following which will make it harder for
your system to get bogged down or abused.
.... continued
http://www.sekure.us/sekure.html
Edit: P.S. Check the link at the bottom of the page of the link it will take you to a great reference sheet about security in PDF format

Wow this contains the exact data I posted on SNPX's forum two days ago.

Wed Apr 23, 2003 12:09 pm HERE

I'm sorry but I can't quite see the similiarities...
I copied that off of the link I posted at the bottom, if it violates any copyrights or anything else please dispute it with the author of the page not me.

Thank you.

I have to say I don't see any similarities either sparky.

Dissolutions did nothing wrong. He put the information up and noted his source.

It's not copywritten, i was just replying to someones questions about linux basic security on the other site.

The link (which i didn't see) pretty much gives the same advice,

Patch kernel, stop services, secure and remove modules of services.

It is good advice.

What do u mean it doesn't have any similarities?

Both mention GRsecurity kernel patch, both mention /etc/xinetd.d (which is only in certain newer versions of linux).

no biggie. just wanted to push ur buttons.

QUOTE

What do u mean it doesn't have any similarities?

What I meant by similarities was a classic "cut and paste" job. As I thought that was angle you were getting at.

Yes they do have similar content.

QUOTE

no biggie. just wanted to push ur buttons.

No problem it's just that I try to ensure that any author gets full credit for their work, that's why so far we have some great relationships with authors who have content on the main site. I want to keep that reputation up

uh????????????? look i started to work on the Os sco_vs and i wanted to know how do i run archives example in the sunOs i run em doing ./archive in this shit it says unknow command how do i run the ./ on this unix version ?

HK - ./ is pretty much the same on all unix systems it means "right where I'm at". So running ./bork would try to run the bork that exists in the current directory (and would not look anywhere else). If ./bork doesn't have the execute permission it won't work.

--j