[CentOS] what percent of time are there unpatched exploits against default config?

Sat Dec 31 13:59:40 UTC 2011
Timothy Murphy <gayleard at alice.it>

Drew wrote:

> In my case, the primary attack vector for hackers getting at my
> servers is via the web. Because I host primarily personal websites on
> my servers, the hackers motivation for breaking into my server (aside
> from 'it's there') is to turn the machine into a bot-net or host some
> viagra phishing sites on it.

I'm in much the same situation,
and would like to protect myself to a minimal extent.
But I don't understand how a usb token (below) would help.

I'm probably showing my ignorance.
(The only protection I take is to run fail2ban.)

> The concern, for me, is more about remote compromise then about
> physical theft of my usb token. A russian hacker who want's another
> compromised machine for his bot-net or phishing ring is probably not
> going to go to the effort of physically flying over here from Europe
> and spend the time needed to track me down, break into my office, and
> steal my usb token. He's more likely to move onto another target one
> of his script-kiddies found for him.

-- 
Timothy Murphy  
e-mail: gayleard /at/ eircom.net
tel: +353-86-2336090, +353-1-2842366
s-mail: School of Mathematics, Trinity College Dublin