A good general principal with security is to start from the premise "everything is proibited except that which I explicitly allow". This starts with your server. Whatservices does it run? The default stuff in inetd, straight out of the box?
We built our own firewall at the place that I use to work - there were two old Sun Sparcstation 10s (or 2s or some antique Sun hardware from the early 1990s) Each had on the motherboard an ISND port, which matched our (then) internet connection.
We installed Solaris 2.6.1 (I think), then went through all the rc.d scripts brutally. There were only three TCP/IP daemons running - apache, DNS and sendmail. Lots of controls on those to limit who could connect to them.
So, if your server physically cannot run may services that could pose a vulnerability, you are a few steps closer to a secure system.
Posts are HTML formatted. Put <p> </p> tags around your paragraphs. Put <code> </code> tags around your code and data!
Read Where should I post X? if you're not absolutely sure you're posting in the right place.
Please read these before you post! —
Posts may use any of the Perl Monks Approved HTML tags:
You may need to use entities for some characters, as follows. (Exception: Within code tags, you can put the characters literally.)
- a, abbr, b, big, blockquote, br, caption, center, col, colgroup, dd, del, div, dl, dt, em, font, h1, h2, h3, h4, h5, h6, hr, i, ins, li, ol, p, pre, readmore, small, span, spoiler, strike, strong, sub, sup, table, tbody, td, tfoot, th, thead, tr, tt, u, ul, wbr
Link using PerlMonks shortcuts! What shortcuts can I use for linking?
See Writeup Formatting Tips and other pages linked from there for more info.
| & || & |
| < || < |
| > || > |
| [ || [ |
| ] || ] ||