On Sat, 11 Dec 1999, Doug McGarrett wrote:
> may decide to run the machine 24/7. Is there
> a book on Linux security (accessible to the
> average newbie) or some other concise source
> that I could use to customise the system for
> security? (I don't even know what to put into
> "hosts.allow" or "hosts.deny")
_Practical Unix and Internet Security_ from O'Reilly and Associates is a
good place to start.
As for how to start, put:
ALL: ALL
in your /etc/hosts.deny, and only add things to hosts.allow as
needed. Also, comment out anything you don't explicitly understand in
/etc/inetd.conf, and then 'kill -HUP $(cat /var/run/inetd.pid)' to restart
inetd.
I also recommend the great ipchains firewall script from www.nerdhurd.org,
and of course portsentry.
--
Todd A. Jacobs
Network Systems Engineer
--
To unsubscribe: mail [EMAIL PROTECTED] with "unsubscribe"
as the Subject.
