in inetd.conf - turn off all services you don't want. This includes rlogin,
rtelnet, and telnet.
in /etc/passwd set the last to /dev/null
use tcpwrappers on all incoming services you left open (via inetd.conf).
Do not run any stand alone servers you don't trust.
That is all.
Bill
On Fri, 7 Jul 2000 14:12:06 -0400 , Fan, Laurel wrote:
> Susannah D. Rosenberg, [EMAIL PROTECTED], said:
> > yeah, but it still leaves rlogind and telnetd flapping in the wind. can
> > you say "telnet to port 25", boys and girls?
> >
> > gaping security flaws are /bad/.
>
> Taking out rlogind and telnetd won't close port 25. And I'm assuming a
> mail server would like to leave the smtp port open.
>
>
> _______________________________________________
> techtalk mailing list
> [EMAIL PROTECTED]
> http://www.linux.org.uk/mailman/listinfo/techtalk
_______________________________________________________
Get 100% FREE email for life from Excite Canada
Visit http://mail.excite.ca
_______________________________________________
techtalk mailing list
[EMAIL PROTECTED]
http://www.linux.org.uk/mailman/listinfo/techtalk
