[Server-devel] XS testing (Tony Anderson)
Martin Langhoff
martin.langhoff at gmail.com
Fri Oct 10 17:22:29 EDT 2008
On Sat, Oct 11, 2008 at 6:17 AM, Greg Smith <gregsmitholpc at gmail.com> wrote:
> I don't fully understand all the vagaries of access to root, but I do
> want to warn you about having any open ports or users with password
> authentication only.
>
> Be really careful about dictionary style attacks.
Agreed - xs will soon have SOTP, but in the meantime, very strong
passwords are recommended.
> ClamAV is also handy, especially if you have Web, PHP, SQL ports visible
No. This is a bit of confusion -- ClamAV is for Linux machines that
want to protect Windows machines by filtering content. ClamAV does
_nothing_ for your linux machine. In particular, it does not protect
PHP or SQL engines.
cheers,
m
--
martin.langhoff at gmail.com
martin at laptop.org -- School Server Architect
- ask interesting questions
- don't get distracted with shiny stuff - working code first
- http://wiki.laptop.org/go/User:Martinlanghoff
More information about the Server-devel
mailing list