Hey Everyone (113 users)
Sorry for quick update here but I thought the new "CRITICALITY"
section is worth the email!
--
**************************************************
** TrinityOS **
** "CRITICALITY" list **
** 01/14/99 **
**************************************************
- This section is for TrinityOS users to better track what TrinityOS
changes ARE and AREN'T so IMPORTANT to be fixed on their Linux box
Key:
----
*C = CRITICAL: *10* items
Something CRITICAL means that your are vunerable to
attack either due to some new security exploit, an
error on my part (firewall rules, etc), or something
that should be tested ASAP.
I = IMPORTANT: *24* items
Something IMPORTANT means that these changes will
have direct impact on the functionality of your box
or is a medium security risk. Not all IMPORTANT things
are important to everyone.
G = GOOD READ: *11* items
Something as GOOD READ means that it is informative
and will better help you track your machine.
N = Not Important: *39* items
Something NOT IMPORTANT are things like Typo corrections,
formatting changes, etc.
================================================================================
Criticality
--
Date What was changed and in what [Section]
-------- --------------------------------------------------------------
================================================================================
N 02/13/99 Added the "CRITICALITY" feature to the TrinityOS featureset
* Sent [Section 3]
Update*
G Added a new "Future Feature" to:
- Add a WATCHDOG to the rc.firewall ruleset so that
if you make an error in the firewall ruleset, a
backup ruleset will be automatically loaded to
restore connectivity.
[Section 3]
N Updated Juanjo's URL for the IPCHAINS port forwarders.
[Section 5]
I Updated the MASQ and non-MASQ rx.firewall rules:
v2.92 - Moved the default policy settings and I
NPUT/OUTPUT/FORWARD flush
from the top of each
section to the top of the entire ruleset
This tip came from [EMAIL PROTECTED]
[Section 10]
G Added an optional line in PPPs'd IP-UP script to use
getdate to do a NTP time re-sync. Good idea from
[EMAIL PROTECTED]
[Section 22]
I Added a little blurb on what SSH is. I've also updated the
SSH
instructions for SSH Version 2 with support for compatibility
mode back to
version 1.
[Section 30]
N Fixed a typo in the Samba section, missing an "s" in
"bind interfaces only = true"
[Section 33]
Added the "TrinityOS CRITICALITY" list and CHANGELOG "key" to
help users
track what changes in TrinityOS are important and not so
important
[Section 100]
*C 02/12/99 # v2A.91 - Added more firewall DENY rules to stop Xwindows
ports
6001-6007
[Section 10]
.----------------------------------------------------------------------------.
| David A. Ranch - Linux/Networking/PC hardware [EMAIL PROTECTED] |
!---- ----!
`----- For more detailed info, see http://www.ecst.csuchico.edu/~dranch -----'
---------------------------------------------------------------------
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
For daily digest info, email [EMAIL PROTECTED]
