This reminds of a question I've been pondering lately, which I believe would be on topic.
I have a box on a public IP -- speaking as a person who cannot devote 24/7 to security, are there any good automated tools to verify its "openness" in terms of security vulnerabilities?
I'm not talking about just potential root exploits and the like, but also about things like file permissions, which I find are hard to get exactly right on Unix (read: Linux with no special ACL stuff installed), where the file system
Microsoft Baseline Security Analyzer [microsoft.com] scans security issues for the OS and any MS software you have installed. There are command-line options, so it could be run as a scheduled task.
Oops, from the topic I thought you were talking about a Windows box. Upon re-reading your post I see you seem to be talking about a Linux box. My mistake.
Open source tools? (Score:3, Interesting)
I have a box on a public IP -- speaking as a person who cannot devote 24/7 to security, are there any good automated tools to verify its "openness" in terms of security vulnerabilities?
I'm not talking about just potential root exploits and the like, but also about things like file permissions, which I find are hard to get exactly right on Unix (read: Linux with no special ACL stuff installed), where the file system
Re:Open source tools? (Score:2)
Re:Open source tools? (Score:2)