[lug] RH9 vs Fedora Core 3 - security threats?
Michael J. Hammel
mjhammel at graphics-muse.org
Tue Mar 1 10:10:19 MST 2005
I noticed this pointer to some tests on dropping various OSes onto the
internet on Slashdot:
http://www.denverpost.com/Stories/0,1413,36~33~2735094,00.html
If you read to the end you find that a Fedora Core 3 machine was
attacked 8 times in the testing while RH9 was not attacked at all. Are
there known problems in FC3 that make it more of a target than RH9? Or
is it just that FC3 is much more recent?
I've got a RH9 firewall and was planning on upgrading to FC3 (via
KRUD). I normally just set a bunch of iptables rules to block all
inbound traffic (even ssh) and allow outbound. That seems about as
secure as you can get, I guess. Now I'm wondering if there are holes
that iptables won't cover.
Not that I worry that much, since I know KRUD is updated monthly with
security patches so I'm probably as safe as I can get if I use their
latest CD.
But I am wondering if I should leave well enough alone. To my
knowledge, I haven't been breached. If all inbound is blocked, I'd
assume the only way they could get access is with a local exploit, but
I'm the only one with access to that box.
--
Michael J. Hammel
The Graphics Muse If love is blind, why is lingerie so popular?
mjhammel at graphics-muse.org
http://www.ximba.org
More information about the LUG
mailing list