[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: error msg

On Tue, 30 Jul 2002 at 09:51:19AM +0200, Giacomo Mulas wrote:
> 3) if you do need them (e.g. you need to export NFS file systems) restrict
> access to all of these relatively fragile services to trusted hosts, using
> hosts.allow, hosts.deny and/or firewalling.
On his point I would like to add that I encourage everyone I talk to to involk
a strong filtering system on any Linux system directly accessable from the net.
I also encourage it on systems that are not directly accessable.  Internal hosts
can always get compromised.  A strong firewall ruleset will DROP everything and
allow only what is needed.



wget -O - http://www.zionlth.org/~plhofmei/ | gpg --import

To UNSUBSCRIBE, email to debian-security-request@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org

Reply to: