Step 1: Subscribe to Debian security lists. Step 2: (If you're really serious about security) Subscribe to relevant package security lists (upstream). Step 3: apt-get update/upgrade regularly for security updates Step 4: (Most importantly) Make regular backups, on- and off-site. Step 5: (Again, if really serious) Investigate setting up a decent logging system to detect breaches.
I'm not trying to discourage you from using Debian, it's great, but you may want to look at the next release of Ubuntu Server, which will have security support for five years. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
