Security Basics mailing list archives
Re: server security
From: Ansgar Wiechers <bugtraq () planetcobalt net>
Date: Sat, 23 Jun 2012 14:48:56 +0200
Having applied the hotfix that was already available for SIX FREAKIN' MONTHS would have provided a FAR better layer of security. As would have not making the SQL Server accessible to the freakin' Internet in the first place. Seriously, SQL Slammer is an example for bad security practices, but not an argument for running services on non-default ports for no good reason. As long as there are more effective ways to ensure security, the only thing gained from non-default ports are admin headaches (additional documentation, support for connection issues, etc.). Regards Ansgar On 2012-06-22 Dave Kleiman wrote:
Tracy, You would have to admit little layers of security, such as running non-standard ports, can protect you as in the Slammer worm. I am not saying that is the best or recommended solution to a problem, but it can work. Respectfully, Dave Kleiman - http://www.ComputerForensicsLLC.com - http://www.DaveKleiman.com 4371 Northlake Blvd #314 Palm Beach Gardens, FL 33410 561.310.8801 -----Original Message----- From: Tracy Reed [mailto:treed () ultraviolet org] Sent: Friday, June 22, 2012 18:31 To: Tracy Reed Cc: Dave Kleiman; security-basics () securityfocus com Subject: Re: server security On Fri, Jun 22, 2012 at 02:54:22PM PDT, Tracy Reed spake thusly:Many "little layers of security" just aren't worth it.Clarification: Some "little layers of security" just aren't worth it. Multiple layers of security certainly are. -- Tracy Reed
-- "All vulnerabilities deserve a public fear period prior to patches becoming available." --Jason Coombs on Bugtraq ------------------------------------------------------------------------ Securing Apache Web Server with thawte Digital Certificate In this guide we examine the importance of Apache-SSL and who needs an SSL certificate. We look at how SSL works, how it benefits your company and how your customers can tell if a site is secure. You will find out how to test, purchase, install and use a thawte Digital Certificate on your Apache web server. Throughout, best practices for set-up are highlighted to help you ensure efficient ongoing management of your encryption keys and digital certificates. http://www.dinclinx.com/Redirect.aspx?36;4175;25;1371;0;5;946;e13b6be442f727d1 ------------------------------------------------------------------------
Current thread:
- Re: server security, (continued)
- Re: server security Killian Faughnan (Jun 21)
- Re: server security Rory Browne (Jun 22)
- Re: server security Littlefield, Tyler (Jun 22)
- RE: server security Ron McKown (Jun 22)
- RE: server security Ward, Jon (Jun 22)
- RE: server security Dave Kleiman (Jun 22)
- Re: server security Tracy Reed (Jun 22)
- Re: server security Tracy Reed (Jun 22)
- RE: server security Dave Kleiman (Jun 22)
- Re: server security Rob (Jun 22)
- Re: server security Ansgar Wiechers (Jun 25)
- RE: server security Dave Kleiman (Jun 22)
- RE: server security Tommy Thomas (Jun 26)
- Re: server security Tracy Reed (Jun 22)
- RE: RE: server security Primrose,Jacqueline (HHSC) (Jun 28)