SliceHost + Debian + FireHOL gotchas

written by Jerod on June 20th, 2008 @ 11:44 AM

Securing your slice with FireHOL is a really, really good move. Here are a few notes that may save you some time:

FireHOL requires a kernel config to know which modules to load, SliceHost uses Xen, so to get the kernel configuration in the right place, execute the following commands:
```
   1  cp /proc/config.gz ~ && cd ~
   2  gunzip config.gz && mv config /boot/config-`uname -r`
```
FireHOL ships with a safety net configured in /etc/defaults/firehol. It will not start until you edit this file and change this:
```
   1  START_FIREHOL=NO
```
to this:
```
   1  START_FIREHOL=YES
```

That should do it for gotchas. Now you can lock down your machine to assure you’re only serving what you expect. Fore more on configuring FireHOL, check out their online tutorial

1 comment

Comments

Ollie Saunders on 17 Jul 08:02

Great! I’ve always worried about that big error message about the kernel.

Options:

Colors

orange
green
pink
cyan
red
violet

Standard Deviations ^{[no mean blog]}

Sections

SliceHost + Debian + FireHOL gotchas

posted in:

tags:

accepting comments

Comments

Post a comment

[Intro]

[Meta]

[Freshens]

[tags]

[Vintage]

[Search]

Options:

Size

Colors

Standard Deviations [no mean blog]

Sections

SliceHost + Debian + FireHOL gotchas

posted in:

tags:

accepting comments

Comments

Post a comment

[Intro]

[Meta]

[Freshens]

[tags]

[Vintage]

[Search]

Options:

Size

Colors

Standard Deviations ^{[no mean blog]}