[Centos] Secure server install

Thu Jan 27 22:04:42 UTC 2005
donavan nelson <donavan at 4wx.net>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Greg Knaddison wrote:
| On that subject, it's worth considering that many installations are
| not terribly "secure" right out of the box.  For example, SSH allows
| protocol version 1 and remote root logins by default on Centos.  Many
| admins consider this to be rather insecure - some have no problem with
| it in their environments.

This is merely a duplication of the configuration of RHEL out of the
box.  IMHO, security due diligence is not a function of the distro provider.

| Whatever services you do need, it would be worth auditing all of their
| config files.

Their or the config files?

.dn
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.6 (GNU/Linux)
Comment: Using GnuPG with Thunderbird - http://enigmail.mozdev.org

iD8DBQFB+WV6CRFXD+VcGBkRAodBAJ4qFG4aZhdRBRzWawLQRKZ+xINK/gCfYIhA
tXnJ+XfDPdam5AUEPC7+dTs=
=wVed
-----END PGP SIGNATURE-----