[ Thanks to bono for this link.
]
Daniel Swan sent us a note indicating he’s updated the
c.o.l.s FAQ and it’s indeed much improved! Would you like to
contribute? Send us a note and share your experiences. The FAQ
covers “Specifically, security as it pertains to the Linux
operating system. General installation of Linux is not covered, nor
are products by other vendors, except where they impact Linux
security. It is not my intent to re-invent the wheel, and in cases
where relevant information has been covered elsewhere it has been
linked to, but is accompanied with commentary on Linux specific
issues.Also, I have purposefully left out pointers to ‘sploits, and
other such naughtiness. Presentation of such material will benefit
those on the offensive end of security more than it will benefit
those trying to secure their systems. A holistic view of system
security will serve sysadmins far better than will concentrating on
protecting against the ‘sploit du jour.”