The Community Forums

Interact with an entire community of cPanel & WHM users!
  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

RedHat 7.1 Security

Discussion in 'Security' started by LinuxFreaky, Dec 3, 2001.

  1. LinuxFreaky

    LinuxFreaky Well-Known Member

    Joined:
    Sep 22, 2001
    Messages:
    87
    Likes Received:
    0
    Trophy Points:
    6
    I have a redhat 7.1 machine. I\'ve gone in to the WHM and updated my server software from the link.

    Is there any other software I need to manually update to make sure my system is secure? Like the kernel perhaps?

    Also, should I use the up2date that rh comes with or will that conflict with cpanel?
     
  2. feanor

    feanor Well-Known Member

    Joined:
    Aug 13, 2001
    Messages:
    836
    Likes Received:
    0
    Trophy Points:
    16
    up2date & the kernel stands completely alone from CPanel....... utilizing up2date and updating your kernel are options that you have that will definitely secure your box, but have no bearing on CPanel... provided Redhat doesn\'t acquire the people that produce all of these third party daemons/tools/etc.

    (Ok interchange is an exception but I don\'t think up2date reaches things like that yet, or ever will)....

    Doubtful. ;)
     
  3. Pete

    Pete Well-Known Member

    Joined:
    Dec 19, 2001
    Messages:
    74
    Likes Received:
    0
    Trophy Points:
    6
    Are you saying that is OKAY or is NOT okay to use the Redhat up2date function? I have asked this question elsewhere and got no answer so far. Which are we supposed to use or does one have no affect on the other meaning we need to use both, or do both do the same thing except it means nothing to Cpanel?
     
  4. shaun

    shaun Well-Known Member

    Joined:
    Nov 9, 2001
    Messages:
    698
    Likes Received:
    0
    Trophy Points:
    16
    Location:
    San Clemente, Ca
    i dont know if any of you have looked thru the rpmup script but basically it\'s doing the same thing as up2date. It downloads all packages that updates.redhat.com releases for your distro except that it doesnt use updates.redhat.com. It uses updates.cpanel.net which looks to me like the mirrored updates.redhat.com

    I kinda modified the rpmup script a bit for testing purposes to use my own mirror or updates.redhat.com for updating systems that arnt using cpanel. I dont know if this is illegal (is it nick?) but it works great. I maily use it to update dedicated servers out their that are running just a base install and configured the system on their own. i just told it to ignore most packages like apache, mysql, kernel, postsql, etc.

    Up2date is alittle more complexe i beleive because it checks for dep\'s and will also download other packages that are needed say if you do a up2date install blah but then again who wants to register every machine with RHN not to mention that you can use their web interface to log in and add/remove packages from your machine from their website!!!!! You dont even have to have the root pass. I was extremely PIST when i found this out and i let them know it. It\'s bullshit in my opinion (sorry for the language).

    2 things to help secure your server... update the kernel and maybe setup a firewall closing all ports that your dont need.
     
Loading...

Share This Page