Secure Linux Distro

Top Page
This message is part of the following thread:
Mthe complete thread tree sorted by date
MJ.L.Francois at <-
MMGregGreg.Furmanek@hit.cendant.com at ->
Attachments:
Message as email
+ (text/plain)
Delete this message
Reply to this message
Author: Furmanek, Greg
Date:  
Subject: Secure Linux Distro
-> You are asking the wrong question.
->
-> Even OpenBSD which is touted as secure out of the box
-> has CERT advisories that mention it that come out once
-> or twice a year.
->
-> There are no guarantees against buffer overflow attacks.
-> There are no guarantees against backdoors or Trojans.
-> There is no such thing as a secure system.
-> Security is not a "fire and forget" operation.
-> Security takes constant vigilance, planning, and learning.

I knew that.

-> MagusNet, Inc. firewall rules and configs are constantly
-> reconfigured based on attack signatures for each day.
-> Every part of my hybrid firewall config is custom and looks
-> nothing like what would come out of any distribution.
-> There is no way *any* vanilla distro could account for
-> the number and types of attacks I see in a 24 hour
-> period due to running a Public Proxy.

I would be interested in how to setup this kind of dynamic
custamized firewall. If you do not mind sharing the
knowledge.

-> For the record I haven't had any system I personally
-> connected to the Internet get compromised over the
-> last 3 years, that tells me I am due, not that I am
-> better than the crackers.

You are definatelly due. (NOT!) ;-)



This message was posted to the following mailing lists:
Plug Discuss
Mailing List Info | Nearby Messages		<-Interesting SPECweb99 results (fwd)Secure Linux Distro->
Some Mailing List Archive administrated by UnconfiguredLurker (version 2.3)