 Quote:
|
Originally Posted by Laurence
I highly recommend tripwire as well.
|
Any coments on the Open Source Tripwire compared to the commercial version and other alternatives? I figured on using the free open source one but have been searching for discussion on it versus alternatives.
Quote:
BMJ, your response was well written, that's a story I'll have to share at work!
You could get Draconian and use SUDO for everything... 
|
Thanks. And "sudo su -", now I'm root...heheh, maybe I'm not quite grasping the concept.
Quote:
|
Out of ignorance, since I'm more of a high level guy, how many password characters will your OS support? Some flavors will only recognize/encrypt 8 or even 5 characters and use weak algorithms, so while you may have a 14 character password with letters, numbers and special characters, the bad guys only have to solve the first part.
|
I have md5 shadow passwords; they'll go over 8 characters...I'm not sure how high they'll go offhand, but my home passwords while not weak were not particularly strong.
Quote:
|
So you going to set up a DMZ?
|
Ironically that's sort of what I was doing when I opened up the lan. Even though I have 5-8 static IP's (5 "usable", but part of my changes now let me use all 8 including my linux router/firewall) I decided to put machines behind NAT unless they need a publicly routable IP. That effectively makes my static IP range the DMZ.
(off to read grumpy's son's blog)
|