Great Circle Associates Firewalls
(June 1997) 		 
Indexed By Date: [Previous] [Next] Indexed By Thread: [Previous] [Next]
Subject: Securing down a box for a firewall
From: "Sameer R. Manek" <manek @ challenger . atc . fhda . edu>
Date: Wed, 11 Jun 1997 19:07:47 -0700 (PDT)
To: Greg Witte <gwitte @ us-state . gov>
Cc: "'firewalls @ greatcircle . com'" <firewalls @ GreatCircle . COM>
In-reply-to: <01BC7654 . 2C895760 @ GREGW> 
I'm curious what is considered striping down a box? I can understand the
obvious stuff like /usr/games, and maybe a few binaries in  /bin and
/usr/bin, along with most setuid binaries. Possibly even remove the
compiler, though compiling on an alternate box is real easy. So what can
be done? top strip it down?
References:
Indexed By Date Previous: Re: Stateful Packet Filters vs. Proxies
From: Vin McLellan <vin @ shore . net>
Next: Re: Fortezza's Fate??
From: "Marcus J. Ranum" <mjr @ nfr . net>
Indexed By Thread Previous: ISO: Linux security checklist?
From: Greg Witte <gwitte @ us-state . gov>
Next: Multiple port connections through PIX
From: "Brian Fraize" <brian . fraize @ rgsinc . com>
Google
 
Search Internet Search www.greatcircle.com