Re: securing server

To: debian-security@lists.debian.org
Subject: Re: securing server
From: Bernd Eckenfels <ecki@lina.inka.de>
Date: Wed, 07 May 2008 11:27:07 +0200
Message-id: <[🔎] E1JtfvX-0001Gz-00@calista.eckenfels.net>
In-reply-to: <[🔎] fa218e630805070209x1c5837cbs6b33c32bf3e2b4b9@mail.gmail.com>

In article <[🔎] fa218e630805070209x1c5837cbs6b33c32bf3e2b4b9@mail.gmail.com> you wrote:
> I already did the followings:
> - installed chkrootkit
> - installed fail2ban (for ssh and proftpd)

Beware of DOS.

> - allow only one user (not root) via /etc/ssh/sshd_config, only ssh v2

If you have multiple administrators, you should not do that.

> Would you please list me which packages to install and which rules to apply ?

There are some hardening packages to look for. Beside that you should review
all running processes and turn those off which you dont need (X11 related,
rpc, hotplug stuff, etc)

Besides that, what applications you plan to run?

Gruss
Bernd

Reply to:

Follow-Ups:
- Re: securing server
  - From: "Jean-Paul Lacquement" <zelos414@gmail.com>

References:
- securing server
  - From: "Jean-Paul Lacquement" <zelos414@gmail.com>

Prev by Date: Re: securing server
Next by Date: Re: securing server
Previous by thread: Re: securing server
Next by thread: Re: securing server
Index(es):
- Date
- Thread