Security holes exist in just about every application, but preventing an attack can be remarkably simple, says an expert hacker.
"It's simple," says Rain Forest Puppy. "Don't feel you have to...take it from Microsoft, just figure out what services lead to security risks and turn them off."
[ZDNet][Security Focus]
This is basically what my whole approach is about. At the simplest level of a security analysis identify all the required services, modules etc on your systems. Shut off everything else. Most App Servers now a days have so many modules that most people just leave them running by default. I'd also like to add, that it might be a good idea to change any default passwords. Even on Dev machines.
3:15:07 PM 
|
