general security questions
Up till now I never really had to worry about security but since I have ADSL now I should. I want to know how vulnerable my PC and server really are. Can someone give some answers to my questions?
I have a hardware router and I opened port 80 and 22 to my webserver.
Which oppurtunities would this give to a hacker? Is there anything you can do to a system through port 80? Let's assume there are no vulnerabilities in Apache.
There are no ports opened to my PC so should this be considered very safe? Is there a need to implement the linux firewall on my pc, even if I have a hardware one?
There are stealth entries for a lot of ports on my router as well.
I am not running FTP and I know it sends authentication in clear text but why is it considered "unsafe"? I would always make sure it is chrooted so they cannot get out of their directory.
One final question, which files on my server would I need to monitor very closely? I know /etc/passwd is one of them :-)