On Tue, Aug 01, 2006 at 10:26:23AM -0500, Titan wrote:
> I have quite a predicament. I have been tasked with setting up an
> FTP server for the research group I'm involved with.
Do you need FTP? Can you use SFTP instead?
> The problem is once I'm gone someone with no *NIX experience will
> be maintaining the server.
Why? Can't you train them? I can understand if most research groups
can't afford to hire a full sysadmin, but hiring an up-and-coming
undergrad for seven peanuts an hour shouldn't be too bad.
> I've been considering using OpenBSD because it looks like it can
> go far longer without updates than Windows and Linux servers and
> looks to be very secure.
/me sighs
OpenBSD, while very, very useful, isn't a magic bullet. System
security is as much the admin's job as it is the OS's. If you leave
your box unpatched, even if it's running IdealOS v20, you'll
eventually regret it. Period.
No matter what OS you put on your server, you'll need to make sure
that it's patched. Some OSes make that task easier; others have
strong security track records. But with a dumb or negligent admin at
the console, it doesn't matter what bonafides your OS has -- you're
screwed.
> In your experience, would it be possible for someone with no *NIX
> experience to maintain a simple FTP server?
Yes.
> How long would you trust an unpatched OpenBSD server to go
> unhacked?
This is silly. Patch your system. If you and your successor spend a
day or two reading the FAQ and afterboot(8) and keep your eye on
your system, you'll stand a good chance of not having too much
trouble.
--
o--------------------------{ Will Maier }--------------------------o
| web:.......http://www.lfod.us/ | [EMAIL PROTECTED] |
*------------------[ BSD Unix: Live Free or Die ]------------------*
