LinuxQuestions.org

LinuxQuestions.org (/questions/)
-   Linux - Security (http://www.linuxquestions.org/questions/linux-security-4/)
-   -   After being hacking what Redhat distribution or other LINUX choice should I make? (http://www.linuxquestions.org/questions/linux-security-4/after-being-hacking-what-redhat-distribution-or-other-linux-choice-should-i-make-15150/)

dri95 02-26-2002 07:08 PM

After being hacking what Redhat distribution or other LINUX choice should I make?
 
Folks,

I had Redhat 6.1 and just got hacked. I want to use it for a webserver. I had telnet and ftp open so the developers for the website could put there stuff on there. I didn't get the warm and fuzzy's about that and apparantly I had good reason.

I didn't have any of the goodstuff on there and am pretty new to admin and don't really want to become an expert :).

I would like a suggestion on where to go from here. Should I just go for 7.X, the latest and greatest.

I want to run PHP, Apache webserver and Oracle 8.1, at least the client.

Thoughts????

mark lightner
a recently hacked student of "THE GAME"

bbenz3 02-26-2002 09:42 PM

It is virtually impossible to have the perfect warm fuzzy feeling about your system. The best thing you can try to do is setup a firewall and possibly change the ports that you use for ftp. You can also try using ssh instead of telnet. Iptables is supposed to be a little more secure than ipchains, but it is newer so it can be a little harder to find documentation on it.

As a side note, www.grc.com is a site that can port scan your computer and will let you know if the "standard" port are open or what when a port scan is done on your computer.


Goodluck.

trickykid 02-26-2002 09:52 PM

definitely use ssh instead of telnet.. that could have been the door left open as its not secure in any means. also definitely look into a firewall.

-trickykid

dri95 02-26-2002 11:17 PM

I guess I asked the wrong question
 
Folks,

I don't really need telnet or ftp that often.

The question that I am looking to answer is what I should do for linux. Should I just reinstall RedHat 6.1 or go to 7.1?

Thanks !!!!

Mark

unSpawn 02-27-2002 01:12 AM

Dude, by now you kinda off your rocker me thinks, you don't have to post your question trice, we know after the second post it's important to you :-]

LinuxGod 02-27-2002 04:04 AM

Stick with Redhat and become an expert. :)

bbenz3 03-02-2002 05:27 PM

The decision you should make is whether you know 6.1 well enough that you don't want to have to relearn somehting new or if you want to use the firewall scripts that most people are putting up for use/examples that use iptables then you should go ahead and upgrade to at least 7.1. You should also upgrade to the newest kernel if you upgrade to 7.1 and get at least vs 1.2.4 of iptables.

jimval7 03-06-2002 09:21 AM

My 2 cents
 
I used to have 6.2 but upgraded to 7.x because I found iptables to more flexible. I can do a lot more with iptables than ipchains, plus it's less administration with iptables. Just my 2 cents!


:Pengy:


All times are GMT -5. The time now is 07:57 AM.