Re: Are Linux boxes vulnerable -- Thanks!

Top Page
This message is part of the following thread:
Mthe complete thread tree sorted by date
 
 
Attachments:
Message as email
+ (text/plain)
+ (text/html)
+ (text/plain)
Delete this message
Reply to this message
Author: Josef Lowder
Date:  
To: Main PLUG discussion list
Old-Topics: Re: Are Linux boxes vulnerable to be used by botnets?
Subject: Re: Are Linux boxes vulnerable -- Thanks!
.
Thanks Erich (and everyone)

---------------------------
On Mon, 17 Mar 2008, Erich Newell wrote
> You should be mostly concerned with what is in your startup scripts and init.d directory. Do a "netstat -antu" and start with those. Look for anything "LISTEN"ing on a non-loopback interface. Do you know what they all are and why they are running? If not, then figure out what they are and eliminate them.
>
> 99.9999967% of systems should only be listening on 22, 80 and 443. FTP is also good for file distribution situations that require no security...but in these instances I still recommend bit torrent and seeding. Its more "net-friendly".


---------------------------------------------------
PLUG-discuss mailing list -
To subscribe, unsubscribe, or to change your mail settings:
http://lists.PLUG.phoenix.az.us/mailman/listinfo/plug-discuss
This message was posted to the following mailing lists:
Plug Discuss
Mailing List Info | Nearby Messages		<-Re: Are Linux boxes vulnerable to be used by botnets?Re: Are Linux boxes vulnerable to be used by botnets?->
Some Mailing List Archive administrated by UnconfiguredLurker (version 2.3)