redhat 6.2 vs 7.1? - 未名空间MITBBS历史存档

国际科技财经博客移民网络热点娱乐民生时事公众号

Redian新闻

>未名空间

>Security - 系统安全

redhat 6.2 vs 7.1?

redhat 6.2 vs 7.1?# Security - 系统安全

S*y2001-06-26 07:06

1 楼

I need to fix a web server which used redhat 6.2 and was hacked.
The key point is to be secure and stable. Will
Now there are 2 solutions:
1. get pitches to fix all security holes of 6.2
No idea how much need to be done. there is such a long list
from redhat. which ones are definitely necessary?
http://www.redhat.com/support/errata/rh62-errata-security.html
2. go get redhat 7.1 directly, still need fix sth and who knows
what is coming. Is the SSL support and enhanced firewall with
i

z*w2001-06-26 07:06

2 楼

1. backup your data and do a clean install
2. 6.2 or 7.1, either is OK, as long as:
2.1 disable unused service: e.g. rpc, ftp, telnet
sendmail, ...
2.2 patch the daemons you will use: wu-ftpd, rpc, samba, bind, etc
are known to have security holes
2.3 set up firewall: ipchains(kernel 2.2) iptables(kernel 2.4)
2.4 use ssh/scp to replace telnet/ftp
2.5 security auditing: check system log, use tripwire, install
snort, etc.

【在 S********y 的大作中提到】

: I need to fix a web server which used redhat 6.2 and was hacked.
: The key point is to be secure and stable. Will
: Now there are 2 solutions:
: 1. get pitches to fix all security holes of 6.2
: No idea how much need to be done. there is such a long list
: from redhat. which ones are definitely necessary?
: http://www.redhat.com/support/errata/rh62-errata-security.html
: 2. go get redhat 7.1 directly, still need fix sth and who knows
: what is coming. Is the SSL support and enhanced firewall with
: i