Re: securing server
> > I already did the followings:
> > - installed chkrootkit
> > - installed fail2ban (for ssh and proftpd)
>
> Beware of DOS.
>
>
> > - allow only one user (not root) via /etc/ssh/sshd_config, only ssh v2
>
> If you have multiple administrators, you should not do that.
I am the only one.
>
>
> > Would you please list me which packages to install and which rules to apply ?
>
> There are some hardening packages to look for. Beside that you should review
> all running processes and turn those off which you dont need (X11 related,
> rpc, hotplug stuff, etc)
Ok. I'll disable them
>
> Besides that, what applications you plan to run?
This server will only run proftpd, ssh, apache, nagios(via http), samba and cups
>
> Gruss
> Bernd
Jean-Paul
Reply to: