Running Only Necessary Servers

Every server you run is a potential doorway through which both legitimate users and crackers can enter your system. Ideally, servers are without flaws and are configured correctly. Unfortunately, our world isn't ideal; most servers have a history of bugs that can be abused by crackers. This history suggests that bugs in current software are common, although largely undiscovered by both the good guys and the bad guys. For this reason, you shouldn't run any server that you don't need to run. If a computer doesn't run a server, crackers can't exploit a bug in that server.

The "Removing Unnecessary Servers" section of Chapter 18 describes how to go about tracking down servers you don't need to run and how to disable or remove them.

0 0

Post a comment