Security
From Wikitech
(Difference between revisions)
(some questions; You are responsible for checking the changes to code which you make on the live site, including code from other people which has been committed to CVS.) |
|||
| (5 intermediate revisions by 5 users not shown) | |||
| Line 1: | Line 1: | ||
| + | {{Old-doc}} | ||
| + | ==Where to find known security issues== | ||
| + | ===apache=== | ||
| + | *http://httpd.apache.org/security_report.html | ||
| + | **http://www.apacheweek.com/features/security-13 | ||
| + | **http://www.apacheweek.com/features/security-20 | ||
| + | |||
| + | ==Security mailing lists to follow== | ||
| + | * [http://www.securityfocus.com/subscribe?listname=1 Bugtraq (general security mailing list, high volume, includes advisories and announcements for many vendors)] | ||
| + | * [http://www.us-cert.gov/cas/signup.html#ta US-CERT alerts mailing list] | ||
| + | * [http://www.redhat.com/mailman/listinfo/fedora-announce-list Fedora-announce list (includes security updates)] | ||
| + | |||
==live code== | ==live code== | ||
| − | You are responsible for checking the changes to code which you make on the live site, including code from other people which has been committed to | + | You are responsible for checking the changes to code which you make on the live site, including code from other people which has been committed to SVN. |
==Eliminating use of passwords for logins/sudo/su== | ==Eliminating use of passwords for logins/sudo/su== | ||
Should password logins be disabled altogether? They aren't strictly necessary at any time except during OS installation. | Should password logins be disabled altogether? They aren't strictly necessary at any time except during OS installation. | ||
Latest revision as of 22:57, 1 November 2010
Contents |
[edit] Where to find known security issues
[edit] apache
[edit] Security mailing lists to follow
- Bugtraq (general security mailing list, high volume, includes advisories and announcements for many vendors)
- US-CERT alerts mailing list
- Fedora-announce list (includes security updates)
[edit] live code
You are responsible for checking the changes to code which you make on the live site, including code from other people which has been committed to SVN.
[edit] Eliminating use of passwords for logins/sudo/su
Should password logins be disabled altogether? They aren't strictly necessary at any time except during OS installation.
