LinuxQuestions.org
Review your favorite Linux distribution.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - General
User Name
Password
Linux - General This Linux forum is for general Linux questions and discussion.
If it is Linux Related and doesn't seem to fit in any other forum then this is the place.

Notices


Reply
  Search this Thread
Old 02-12-2003, 05:02 PM   #1
jeffpoulsen
Member
 
Registered: Sep 2002
Posts: 46

Rep: Reputation: 15
Server Configurations


I am still learning Linux. Now I have several questions about setting up my server. I put a server exposed to the net for less than 24 hours before I was cracked. I have since clean installed RH 8.0 and updated it. My plan is to have a web server that I can that I can let my family upload pictures etc to. I want set up users that can do this with encryption. I have installed ssh with this system. I use putty on my other machines to test the configurations. But I have not set up any users yet. I am running behind two firewall/routers. I have port 80 nat'd to the server. It is on a separate network from the rest. I have found little help to guide me in setting up the server and the clients to be able to upload using a secure ftp program, maybe sftp?. Also I may want to set up a few virtual sites to allow other groups to view or upload files etc. Can anyone help. I have read the manual and even the book but its never clear on how the clients access the server. All help is greatly appreciated.
 
Old 02-12-2003, 06:50 PM   #2
williamwbishop
Member
 
Registered: Feb 2003
Location: god's judge
Posts: 376

Rep: Reputation: 30
For ftp, I would go with pro, real secure. By chance, how did you come to find you were cracked? What was your setup, and what additional software did you apply? RH, isn't a very secure distro, and takes a bit of tweaking to get it that way, but it can be made as secure as is reasonable. Always start and finish your build all tweaks and security in place before you attach it to any network, and be sure to run an nmap on it prior to placement. Tripwire it, run the usual(bastille works fine for redhat since you are running that). Just make sure it is as you want it to be before you place it.
 
Old 02-12-2003, 08:16 PM   #3
jeffpoulsen
Member
 
Registered: Sep 2002
Posts: 46

Original Poster
Rep: Reputation: 15
William,
I found out I was cracked when I got up in the morning and my switch lights were going crazy. Lots of traffic. Well I checked to see what was running on the machine and got the program that was flooding the network. I cannot remember the name today but I did a search for it and I found that it was a trojan. Any way at that time I was running RH 7.2 with WU-FTP. I had most ports open and did little to write any chains or else. Now I am using the Dlink router as a gate, and Mikrotik as the next firewall and router. I am having a little trouble with the Mikrotik router but will master that soon. Btw the Mikrotik router is great. I have used in the past for a masqurade gate. It's free without support. Here's a link if you are not familiar with it.

http://www.mikrotik.com/index.html

I have the http server running now. I think its relatively safe behind the routers. But what I need is some instruction on how to upload to it securley. Thanks. jeff
 
Old 02-12-2003, 08:20 PM   #4
williamwbishop
Member
 
Registered: Feb 2003
Location: god's judge
Posts: 376

Rep: Reputation: 30
Quote:
Originally posted by jeffpoulsen
William,
I found out I was cracked when I got up in the morning and my switch lights were going crazy. Lots of traffic. Well I checked to see what was running on the machine and got the program that was flooding the network. I cannot remember the name today but I did a search for it and I found that it was a trojan. Any way at that time I was running RH 7.2 with WU-FTP. I had most ports open and did little to write any chains or else. Now I am using the Dlink router as a gate, and Mikrotik as the next firewall and router. I am having a little trouble with the Mikrotik router but will master that soon. Btw the Mikrotik router is great. I have used in the past for a masqurade gate. It's free without support. Here's a link if you are not familiar with it.

http://www.mikrotik.com/index.html

I have the http server running now. I think its relatively safe behind the routers. But what I need is some instruction on how to upload to it securley. Thanks. jeff
I would definately avoid washington ftp, and make sure to set everything up right before you drop it on the net. Since you are running 7.2, bastille would be just right for you. Sorry to hear that mate. Be sure to wipe the drive, then rebuild offline. proFTP also.
 
Old 02-12-2003, 08:23 PM   #5
williamwbishop
Member
 
Registered: Feb 2003
Location: god's judge
Posts: 376

Rep: Reputation: 30
BTW, are you running this as a full box, or just as a server. If it is just as a server, you might be better off using one of the distros that is specific to the task. The less services you are running, the more inherently secure the system.
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
dhcpd configurations depam Linux - Software 2 10-07-2005 03:09 PM
Some Questions and Opnions needed regarding Linux Server Configurations..Thank You :) lionelx Linux - Newbie 2 09-30-2004 10:58 AM
acx100 configurations rabby Linux - Wireless Networking 7 04-28-2004 01:27 PM
General Server questions...Not on configurations techrolla Linux - General 11 11-30-2003 11:56 AM
Web Server Configurations? DevlshOne Linux - Newbie 13 12-15-2002 03:18 PM

LinuxQuestions.org > Forums > Linux Forums > Linux - General

All times are GMT -5. The time now is 02:38 AM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration