Hallo harry, * harry <Rik.Bobbaers@xxxxxxxxxxxxxxxxx> [2004-03-15 15:14]: > - use debian testing (stable is too old, unstable is ... well... you > know ;)) yes, unstable works well :) with testing your system isn't secure. > - maybe allow ssh (no root logins)? you can use ssh. a remote root shell have to be forbidden. > ==> is this ok, too paranoia or is there somenting i'm missing, and > cound it be even more safe? iptables > how about a compiler? normally, all soft on it is compiled by hand, but > it is also "necessary" for a local exploit. > > any ideas? remarks? i don't understand the question. regards nico -- Nico Golde | nico@xxxxxxxxx | 310777820@ICQ | nion@xxxxxxx http://www.ngolde.de | GnuPG Key: http://www.ngolde.de/gpg/nico_golde.gpg Fingerprint | FF46 E565 5CC1 E2E5 3F69 C739 1D87 E549 7364 7CFF echo "[q]sa[ln0=aln256%Pln256/snlbx]sb729901041524823122snlbxq"|dc
Attachment:
pgp00037.pgp
Description: PGP signature