Vendor

UNUG Home
Up
Ports
Sendmail
tcp_wrapper
PGP
Firewalls
Linux
Sun OS
Web
setuid
tcpdump
CERT/Hacker Reports
Vendor
SSH
Monitor
Kerberos
AFS
Xhosts
r Command
su_users
Installation
Virus, Trojan, Worm, etc.
Filesystem
Passwords
Monitor Logs
Physical Security
User Management

12. Vendor Patches

Hackers are constantly finding new security holes while vendors usually try to provide timely fixes for them.  Many vendors provide security patches for free and make them available on the net.  Other vendors may require a service maintenance agreement.  Here is a list of common Unix vendors that have and maintain security patches: 

·        BSDI - ftp://bsdi.com/bsdi/patches

·        Caldera OpenLinux - ftp://caldera.com/pub

·        Debian Linux - http://cgi.debian.org/www-master/debian.org/sec.html

·        DEC - http://www.service.digital.com/html/patch_service.html

·        FreeBSD - ftp://ftp.FreeBSD.org/pub/FreeBSD

·        HP - http://us-support.external.hp.com

·        IBM - ftp://testcase.software.ibm.com/aix/fromibm

·        NeXT - ftp://ftp.next.com/pub/NeXTanswers/CompressedFiles/Patches

·        RedHat Linux - ftp://ftp.redhat.com/updates

·        SCO - ftp://ftp.sco.com/SSE

·        SGI - ftp://sgigate.sgi.com/patches

·        SUN - http://sunsolve.sun.com/sunsolve/pubpatches/patches.html