Slashdot Mirror

← Back to Stories (view on slashdot.org)

Linux Security: Reflections on 2002, Eye on 2003

Posted by timothy on from the bolting-the-doors-helps dept.

Mirko Zorz writes "Here are the reflections on Linux security in 2002 and predictions for 2003 by Bob Toxen, one of the 162 recognized developers of Berkeley UNIX and author of the acclaimed book "Real World Linux Security" already in its 2nd edition. Read more at Help Net Security."

5 of 129 comments (clear)

  1. And flying cars by ObviousGuy · · Score: 3, Funny

    There will be flying cars to take us to and from work.

    --
    I have been pwned because my /. password was too easy to guess.
  2. Real World Computer Security by SuperDuG · · Score: 4, Funny
    1.) Use Microsoft Server Solutions and leave system alone (as risky as driving 100 mph on ice)

    2.) Use RPM based Linux Distribution and leave system alone (risky as swimming in a americanized river).

    3.) Use OpenBSD and leave system alone (like sitting on a Sunday with your grandma in Utopia(tm)).

    Is this the type of "security" they're talking about? I don't know of one system that advertises itself as "secure" other than OpenBSD. For an opensource site like slashdot I think the best tool for the job should definantelly be used.

    Or if you insist on a RPM Linux solution, ge Bastille. And possibly look into a non-RPM based distro, for servers debian certainly works quite well. And if your server is IMPORTANT at all, subscribe to bugtraq, cert, and anything else that applies to your OS. It wouldn't hurt to check the homepage of your OS at least once a week either. And do routine audits on your system.

    Security isn't hard if you actually make it a point to be conscious about it.

    --
    Ignore the "p2p is theft" trolls, they're just uninformed
  3. Damn by stinky+wizzleteats · · Score: 5, Funny

    Unfortunately, a fair number of "Mom and Pop" sites use IIS, though a surprisingly high percentage do use Linux. For this reason, before giving my credit card to a new web merchant I always do:
    nmap -O -sS -F -P0 -T Aggressive newguy.com

    Stealth port scan with agressive timing? Now that's consumer activism.

    1. Re:Damn by Anonymous Coward · · Score: 2, Funny
      That's a SYN scan. Not a stealth scan. With Fast mode enabled, OS detection, no ICMP pings and aggressive timing...


      You nmap newbie.. If you were a really 31337 haxor you'd know how to use nmap. Bitch!

  4. aaaaargh by pummer · · Score: 1, Funny

    it seems we've had enough year-end recaps. What's next, the Recap of the Recaps?