On Mon, 12 Dec 2011 06:56:14 -0500 "Anthony G. Basile" wrote: > Do you have this documented anywhere. It would be a good addition to > any system wide hardening docs we already have.
I'm afraid not, maybe sparsed among config file comments. I haven't created a blog yet or any papers if that's what you mean. I haven't really stopped for years. Hard to recall but I'll try to list them somewhere as they come to me now. Another good example is suhosin php command whitelisting which for small web-apps must avoid tons of exploits of course that ones obviously not pointless.
