[CentOS] what percent of time are there unpatched exploits against default config?

Sat Dec 31 22:45:05 UTC 2011
Timothy Murphy <gayleard at alice.it>

Les Mikesell wrote:

> Someone cracked my gmail password and sent what seemed like an oddly
> small amount of spam from it.

gmail and hotmail must be very easy to crack,
or is there some check apart from the password?

> That doesn't work for web services open to the public.  You need
> firewalls that can work at wire speed filtering the inbound URLs for
> known attack patterns, plus of course, updating the software as
> quickly as possible to fix the vulnerabilities.

Yes, I'm more worried about attacks through port 80.
Can anyone point me to documentation on protecting a web-server?


-- 
Timothy Murphy  
e-mail: gayleard /at/ eircom.net
tel: +353-86-2336090, +353-1-2842366
s-mail: School of Mathematics, Trinity College Dublin