System cracked, a story
Robert La Ferla
robertlaferla at attbi.com
Mon May 26 17:03:13 EDT 2003
I have been reading the posts regarding security. I just want to point
out that there is no panacea. Tripwire is a good measure but it's only
one of many. There are two security maxims to keep in mind: (1)
Security comes at the tradeoff of convenience and (2) You can increase
security but you can never be 100% secure. That said, I think the best
thing for the original poster to do is read Gerhard Mourani's "Securing
and Optimizing Linux" on http://www.tldp.org. Tripwire, PortSentry,
NetFilter, etc... are all discussed in this excellent guide.
BTW - A while back I asked about the status of PortSentry but never
received a reply. The source code used to be freely available from
Psionic before they got acquired by Cisco. Any news on PortSentry?
Robert
More information about the Discuss
mailing list