7 Jun
2008
7 Jun
'08
12:03 a.m.
On Fri, Jun 6, 2008 at 7:54 PM, Luke S Crawford lsc@prgmr.com wrote:
"Filipe Brandenburger" filbranden@gmail.com writes:
My boss asked me to harden a CentOS box by removing "hacker" tools, such as nmap, tcpdump, nc (netcat), telnet, etc.
Removing network tools does not make it harder to break into the box, however, it can make it harder to do something with it once you are in. removing those tools might help keep an infection from spreading, but it wont protect the box itself. (also, just installing the programs just means that if your box get compromised, the hacker needs to install some new packages. Not difficult, even without root- the attacker can install to the compromised user homedir.)
But removing networking would :)
--
-matt