[vox-tech] Verify Ubuntu files
Gandalf Parker
gandalf at any1can.net
Fri Aug 15 19:04:40 PDT 2008
Ive also been watching the conversation and enjoying it.
I wasnt sure if I should speak up. Ive been admining internet servers for
as long as internet has been internet (military, then ISPs, now just a
couple for myself and friends at home). Ive done forensics on many an
invaded computer. And Ive run homeypots just for fun.
The problem with me piping in is that Im too involved. Im like the expert
car mechanic who wants to say "you dont really have to change your oil
that often" or a doctor who wants to say "not everyone needs to take a
daily vitamin". The answers that are given are always great things that
should always be said to anyone who is new enough to the subject to need
to ask such questions.
On the other hand...
You would be amazed at how few of those I do on my linux servers. My
Windows desktops, YES. But linux does take care of itself very well.
ON the third hand...
just because the houses in your neighborhood rarely get robbed it doesnt
mean you would leave your doors open or unlocked. There are excellent
programs that block unwanted activity. But having locks doesnt mean that a
watchdog isnt a good idea. Getting programs that look for breakins (no
matter how secure you think you are) are also a good idea. Im afraid I
cant help with recommendations. I like coming up with my own tricks in
that area.
On the fourth hand...
there is such a thing as having so many locks on the door that its a pain
to use. And we all know that a dozen locks still wont protect you from the
high end burglar. A real peace of mind can be achieved by maintaining the
attitude "if you are going to work that hard to blow my system away then
no sweat". Keep track of what you load and would miss. If the system gets
totally trashed; then have a good cry, consider it a chance to do major
hardware and OS upgrades, reload. Have good backups of personal stuff.
Oh and speaking of keeping track..
one thing that is a real killer on peoples systems is off-catalog
programs. Since its off-catalog, the updates are not automatic. Im not
saying NOT to give in to the temptation of the wonderful toys available
from so many sites but try to hold them down. Ive often seen to cool app,
but if I search the catalog there is something like it already there. I
grab that first and see if it will serve my purpose. Items you DO get
off-catalog, keep track of them. Dont leave them running and upatched for
years and years.
"My Mom made me the security expert that I am today.
She always told me that if you open it, then you shut it. And if you
arent going to pay attention to it, then dont leave it running. And put
away your toys when you are done playing with them. Never talk to
strangers and never accept gifts from people you dont know."
- Gandalf Parker
Gandalf Parker
-- the music should always change when..
Someone in a horror movie says "We should be safe here"
Someone driving says "Ive never had an accident"
Some computer user says "My machine is secure"
- Gandalf Parker
More information about the vox-tech
mailing list