Re: Locking Down a Linux Box
From: Kurt Seifried (bugtraq@seifried.org)Date: 12/21/01
- Previous message: Jon Larabee: "Re: Locking Down a Linux Box"
- In reply to: Kevin Robitaille: "Locking Down a Linux Box"
- Next in thread: José Luis Domingo López: "Re: Locking Down a Linux Box"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
From: "Kurt Seifried" <bugtraq@seifried.org> To: <focus-linux@securityfocus.com> Date: Fri, 21 Dec 2001 14:50:03 -0700
> Any one out there know good reference for securing a
> Linux 7.2 Server OS. I'm new to using Linux and need
> to lock down a system for use as an IDS Sensor. Any
> help would be appreciated.
I assume you mean Red Hat 7.2. Simply remove everything except for OpenSSH.
I.e. a lot of rpm -e, remove all network daemons, also take a look for
setuid/setguid apps like ping/etc and remove them, and do not allow much
access to the box (i.e. only admins).
Kurt Seifried, kurt@seifried.org
A15B BEE5 B391 B9AD B0EF
AEB0 AD63 0B4E AD56 E574
http://www.seifried.org/security/
- Previous message: Jon Larabee: "Re: Locking Down a Linux Box"
- In reply to: Kevin Robitaille: "Locking Down a Linux Box"
- Next in thread: José Luis Domingo López: "Re: Locking Down a Linux Box"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
|
