[NCLUG] Network configuration
Mark Horning
rip6 at rip6.net
Thu Oct 26 21:22:35 MDT 2000
dobbster wrote:
>
> Hello,
>
> I appreciate all of the information provided by this thread. The main
> result has been a substantial increase in my level of paranoia... Which
> is not a bad thing.
>
> Once I've further researched into some more of the details, I'll attempt
> to build a Firewall from either OpenBSD or Linux, probably as per the
> general suggestions given thus far. Rather than finishing this week, it
> may take a little while longer, but I'll get it. I'll probably also
> materialize at NCLUG meetings...
>
> In the meantime, I am going to TURN OFF most of my machines when I'm not
> working on them. I figure that keeps them secure, for the most part.
> :-) Besides, the rudimentary measures I already have up have worked so
> far - The portsentry/hostsentry/aide software has thus far prevented
> cracking, as far as I can tell.
>
> Mark (dobbster at frii.com)
>
Hi Mark,
If you want to secure a Linux box,
I would look into Bastille which runs on RH or Mandrake
http://bastille-linux.sourceforge.net/
and a good read is the TrinityOS doc
http://www.ecst.csuchico.edu/~dranch/LINUX/index-linux.html
The new firewall code for Linux is called netfilter
http://netfilter.kernelnotes.org/
and the mail list is very active.
--
Mark Horning
rip6 at rip6.net
More information about the NCLUG
mailing list