On Fri, 25 Mar 2005 23:02:01 +0100
Amadeus Stevenson <amadeus.stevenson@gmail.com> wrote:

> Is there anything else you could do? Password rotation? What would you
> do if you had to run, say, a security-critical (eg. a bank or paypal)
> system? Would you use netbsd? Why not (if so)?

For a really security critical system you would have to think a lot
about securing the hardware. You couldn't colocate it.

For ssh you could consider using port knocking to limit access to the
sshd daemon. My systems do get attacked in this way though nothing has
ever got through.
-- 
Michael Smith
Network Applications
www.netapps.com.au   | +61 (0) 416 062 898
Web Hosting          | Internet Services