Jean Lee wrote:
Hello all,
Hi Jean, welcome to CentOS.
I 'm new in CentOS 4. I was working before with WBEL 3.0 but I think that I was hacked (I'm not sure) so I install a new server.
Cool. Glad to hear you've got a fresh rebuild.
I want now to be as secure as possible :
I can understand that.
- I disabled every services and the command netstat -taupn returns
nothing.
Wow! Good job! What does this machine do that does not require any network daemons? I usually at least leave SSH up so I can remotely administer the machine.
- I setup a firewall with iptables which allows only related and
established connections to the intrenal LAN. I'm sure of this firewall. Is it better to use ip6tables ?
ip6tables is used for IP version 6. Most of the world has not transitioned over to IPv6 yet (I know I haven't). If you don't know what I'm talking about, you're using IPv4 like the rest of us, which is what iptables is used for.
- I will now update this server. I want to use yum.
Where are placed the CentOS mirrors ( I need it in order to configure yum.conf) ? Is there a way to verify automatically the packages integrity with yum ?
I think someone beat me to answering this question.
--Shawn