From: Paul Robertson (no email)
Date: Wed Jan 02 2002 - 09:15:00 EST
On Wed, 2 Jan 2002, Ralf Hildebrandt wrote:
> On Wed, Jan 02, 2002 at 08:43:55AM -0500, Paul D. Robertson wrote:
>
> > Make sure you're keeping the Linux machine up to date- things like the
> > recent glibc patch for glob() are important. Also ensure that you're
>
> That means: Use Debian, cause updates on all other distros stink. Yes,
> I tried.
I updated my RH 7.2-based laptop without any issues.
>
> > using local filtering on that box to ensure that nothing but Postfix and
> > it's necessary DNS queries are available to the world.
>
> Maybe run a local caching dns.
Always (for performance reasons)- however it's important to ensure that
the DNS isn't exploitable- after WU-FTP, BIND is pretty high on the list of
*nix exploit vectors if not next (excluding RPC stuff, which tends to be
higher for Sun than others.)
Paul
-----------------------------------------------------------------------------
Paul D. Robertson "My statements in this message are personal opinions
which may have no basis whatsoever in fact."
-
To unsubscribe, send mail to with content
(not subject): unsubscribe postfix-users
|
|
|