Results 1 to 3 of 3

Thread: What do you do ...

  1. #1
    Semp
    Guest

    What do you do ...

    I'm going to make this short because I have to reboot and go upstairs :-\ What do you do to secure your Linux servers and Linux workstations?

  2. #2
    Semp
    Guest

    Re:What do you do ...

    This is what I do for Linux servers. I install the Linux Debian base from the network to make sure I have the most up-to-date utilities, I then start installing utilities I will need while keeping track of them (E.G., GCC, Libc6-dev, etc.), I secure the local file system, I download the latest kernel (2.2.X only because 2.4.X scares me ), I apply OpenWall kernel patches, I apply HAP Linux kernel patches, I install Bubblegum, I install Exim so I can get daily logs in my Inbox, and finally I remove everything I don't need (E.G., GCC, Dev Files, etc.) from the server. This is the basics of what I like to do to Linux based servers.

    I forgot to add these links ;D

    http://www.debian.org/
    http://www.kernel.org/pub/linux/kernel/v2.2/
    http://www.openwall.com/linux/
    http://www.theaimsgroup.com/~hlein/hap-linux/
    http://cyclic.sourceforge.net/bubblegum/
    http://www.exim.org/

    Quote Originally Posted by Semp
    I'm going to make this short because I have to reboot and go upstairs :-\ What do you do to secure your Linux servers and Linux workstations?

  3. #3
    Aaron_Adams
    Guest

    Re:What do you do ...

    Off a basic install I:

    Shut down all uneeded, or out of date services. (stupid inetd.conf!! The pros of oBSD shine through in this area!)
    Update all needed services / kernel (I usually don't install the unneeded ones... lol )
    Set up TCP Wrappers (hosts.allow / hosts.deny)
    Normally I'd set up a firewall, but I have a router that does it for me, so no biggy there.
    I set core files like: ls, ps, find, inetd.conf, etc. immutable, so automated scripts can't overwrite them with torjaned binaries.
    I also take . out of my PATH lol
    I also usually install some basic tools like nmap, nessus, etc. No harm in running a freshly updated nessus scan on yourself.

    There's some other stuff, but it's been awhile since I've gone through the routine, so I can't remember.

Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •