Re: securing server

To: Jean-Paul Lacquement <zelos414@gmail.com>
Cc: debian-security@lists.debian.org
Subject: Re: securing server
From: Brent Clark <bclark@eccotours.biz>
Date: Wed, 07 May 2008 11:29:33 +0200
Message-id: <[🔎] 4821767D.8030708@eccotours.biz>
In-reply-to: <[🔎] fa218e630805070209x1c5837cbs6b33c32bf3e2b4b9@mail.gmail.com>
References: <[🔎] fa218e630805070209x1c5837cbs6b33c32bf3e2b4b9@mail.gmail.com>

Jean-Paul Lacquement wrote:

Hi,

I plan to secure my Debian stable (or testing if you say it's better) server.


I already did the followings:
- installed chkrootkit
- installed fail2ban (for ssh and proftpd)
- allow only one user (not root) via /etc/ssh/sshd_config, only ssh v2


The followings daemon are installed :
- proftpd
- apache2
- ssh

Would you please list me which packages to install and which rules to apply ?

Many thanks,
Jean-Paul

Hi

Just remember less (installed software) means more security. So go forthe minimalist installation achievable.


You may also want to look at software like

rkhunter
aide
logwatch
logcheck
checksecurity
tiger
unhide

Modsecurity for apache (1&2)

If you using SNMP, natuarally V3 would be a good idea

If you using ftp, cant you opt for ssh rather, you can even use chrootfor ssh.

I always use testing. And have had great success. (Recently, I was ableto achieve PCI compliancy)


O, for ssh password as some ASCII too example.

tryAnd_H4ckTh1s5

I dont see the need to iptables rules, but in case you do have the need,rather look at xtables.

http://jengelh.medozas.de/projects/xtables/

All the best
Brent Clark

Reply to:

References:
- securing server
  - From: "Jean-Paul Lacquement" <zelos414@gmail.com>

Prev by Date: Re: securing server
Next by Date: Re: securing server
Previous by thread: Re: securing server
Next by thread: Re: securing server
Index(es):
- Date
- Thread