Re: Linux Hardening

what is the machine's location on your network (LAN\DMZ etc...) what is the machine role, you should ask yourself some questions before approaching hardening, I would not put the same effort on a machine which is located on my LAN as much as I would make sure that DMZ machines are protected, same goes for a web server which usually has a lot of active processes on it and a DNS server or an FTP server which are in most cases relatively less vulnerable.

there are a lot of tools , but one may perform some basic actions to make sure the machine is protected enough in regards to what it does and where it is located.

Liran Cohen

Jure Krasovic wrote:
jvicente@xxxxxxxx pravi:
Hi,

I was looking for a Linux hardening tool. I found Bastille. The latest = version that I was able to find is 3.09. I cannot seem to get this = version to work on later versions of Linux (RHEL 5, FC 6,7) = distributions.

Is this tool still being supported? Is there a similar tool out there?

Thanks in advance,
JP


SELinux is already included in RHEL and their clones. May be you should try it.

Regards!

Jure



--
Liran Cohen
http://www.rct.co.il
http://www.dir.rct.co.il