Secure Linux Distro

Top Page
Attachments:
Message as email
+ (text/plain)
Delete this message
Reply to this message
Author: J.L.Francois
Date:  
Subject: Secure Linux Distro
It seems like on Tue, Jul 04, 2000 at 04:15:15PM -0700, The Wolf scribbled:
Orig Msg> I have been using Mandrake for quite some time.
Orig Msg>
Orig Msg> But since they have been pronounced the easiest
Orig Msg> distro to break into I would like to know what
Orig Msg> would be the hardest dirstro to break in.
Orig Msg>
Orig Msg>
Orig Msg> --
Orig Msg> The Wolf

You are asking the wrong question.

Even OpenBSD which is touted as secure out of the box
has CERT advisories that mention it that come out once
or twice a year.

There are no guarantees against buffer overflow attacks.
There are no guarantees against backdoors or Trojans.
There is no such thing as a secure system.
Security is not a "fire and forget" operation.
Security takes constant vigilance, planning, and learning.

MagusNet, Inc. firewall rules and configs are constantly
reconfigured based on attack signatures for each day.
Every part of my hybrid firewall config is custom and looks
nothing like what would come out of any distribution.
There is no way *any* vanilla distro could account for
the number and types of attacks I see in a 24 hour
period due to running a Public Proxy.

For the record I haven't had any system I personally
connected to the Internet get compromised over the
last 3 years, that tells me I am due, not that I am
better than the crackers.

The most secure distro is the one you set up and test for yourself
for the paticular requirements of your network.
The hardest system to break into is the one that provides the least
amount of services to attack and causes the most amount of time
to be wasted during the attack.
It has to be constantly monitored and dynamic enuff to change
as the threat changes.

Its kinda like car theft, make your system least likely to be attacked
by installing the tools to make the life of a cracker miserable and
frustrating. Script Kiddies need not apply.

All of the above are concerns no matter what distro or Operating
System you happen to be running. If anything the distro is irrelevent.
If you are waiting for someone else to do it for you, you will
be waiting a long time.

Jean Francois Sends...
President & CEO - MagusNet, Inc., MagusNet.com, MagusNet.Gilbert.AZ.US
Director Of Managed Services - OpNIX,Inc., www.opnix.com
OpNIX - Simply Better Bandwidth
602-770-JLF1 - Cellular, ICQ: 8137851



From Mon Jul 3 06:11:29 2000
From: (colin rasor)
Date: Sun, 02 Jul 2000 23:11:29 -0700
Subject: E-mail and Cox
References: <>
Message-ID: <>

This is a multi-part message in MIME format.
--------------A71BC63219FCCDCEA3808C9B
Content-Type: multipart/alternative;
boundary="------------F62A75A6DD560BDDD243AEA6"


--------------F62A75A6DD560BDDD243AEA6
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit

David Demland wrote:

> Does any know now to get "mail-client" to talk to Cox e-mail. I have
> set everything up like on the PC and I keep getting an error message
> that a host can not be found. Any ideas? David


David,
Here is what I did.
Guy comes out installs cable modem *on windows box*
Colin gets dhcp working on his *linux firewall*
Colin fires up dhclient on firewall and connects to internet
Colin runs tcpdump to look at the pop3 requests made buy the *windows
box*(after typing the server name mail\)
Colin enters gained ip addresse into mailer of choice on workstation.

Please keep in mind this only works if you have a account set up with
them. Either through the web or through technical service.
Hope this helps!


--------------F62A75A6DD560BDDD243AEA6
Content-Type: text/html; charset=us-ascii
Content-Transfer-Encoding: 7bit

<!doctype html public "-//w3c//dtd html 4.0 transitional//en">
<html>
<body bgcolor="#FFFFFF">
David Demland wrote:
<blockquote TYPE=CITE><style></style>
<font face="Arial"><font size=-1>Does
any know now to get "mail-client" to talk to Cox e-mail. I have set everything
up like on the PC and I keep getting an error message that a host can not
be found. Any ideas?</font></font>&nbsp;<font face="Arial"><font size=-1>David</font></font></blockquote>
David,
<br>&nbsp;Here is what I did.
<br>Guy comes out installs cable modem *on windows box*
<br>&nbsp;Colin gets dhcp working on his *linux firewall*
<br>&nbsp;Colin fires up dhclient on firewall and connects to internet
<br>&nbsp;Colin runs tcpdump to look at the pop3 requests made buy the
*windows box*(after typing the server name mail\)
<br>&nbsp;Colin enters gained ip addresse into mailer of choice on workstation.
<p>Please keep in mind this only works if you have a account set up with
them. Either through the web or through technical service.
<br>&nbsp;Hope this helps!
<br>&nbsp;
</body>
</html>

--------------F62A75A6DD560BDDD243AEA6--

--------------A71BC63219FCCDCEA3808C9B
Content-Type: text/x-vcard; charset=us-ascii;
name=" linuxnet.vcf"
Content-Transfer-Encoding: 7bit
Content-Description: Card for colin rasor
Content-Disposition: attachment;
filename=" linuxnet.vcf"

begin:vcard 
n:Rasor;Colin
tel;work:6023040299
x-mozilla-html:FALSE
url:http://www.specializedmillwork.com
org:http://www.specializedmillwork.com;IS
version:2.1
email;internet:
adr;quoted-printable:;;    1918 S. VanBurean st.    =0D=0A=0D=0A=0D=0A;Phoenix;AZ;85010;United States of America
x-mozilla-cpt:;2
fn:Colin Rasor
end:vcard


--------------A71BC63219FCCDCEA3808C9B--