How can I secure a Debian installation?

To: debian-user@lists.debian.org
Subject: How can I secure a Debian installation?
From: Jon Danniken <danniken@q.com>
Date: Mon, 27 Jan 2014 20:24:42 -0800
Message-id: <[🔎] 52E7310A.1050305@q.com>

Hello list,

I recently came across a posting by an individual who got his
Debian machine compromised due to a number of security problems, one of
which was the default installation and running of sshd with
"PermitRootLogin =
Yes".  in /etc/ssh/sshd_config.

So I checked the Debian installation that I put on my laptop a month ago
(from the Wheezy net install CD), and sure enough I had the same
vulnerability
(I fixed it by changing the "PermitRootLogin" value).

Fortunately I have been running behind my router, and remain unscathed,
but it caused me to wonder what other vulnerabilities are present out of
the box that I need to address, especially if I should take the laptop
out with me and connect to a public network.

Besides the sshd root login, what else do I need to disable/fix on this
machine?

Thanks,

Jon

Reply to:

Follow-Ups:
- Re: How can I secure a Debian installation?
  - From: Raffaele Morelli <raffaele.morelli@gmail.com>
- Re: How can I secure a Debian installation?
  - From: Scott Ferguson <scott.ferguson.debian.user@gmail.com>
- Re: How can I secure a Debian installation?
  - From: Andrei POPESCU <andreimpopescu@gmail.com>
- Re: How can I secure a Debian installation?
  - From: Thierry Chatelet <tchatelet@free.fr>
- Re: How can I secure a Debian installation?
  - From: Brian <ad44@cityscape.co.uk>

Prev by Date: How to Downgrade from Wheezy to Squeeze
Next by Date: Re: Beginner info on Qt
Previous by thread: Re: How to Downgrade from Wheezy to Squeeze
Next by thread: Re: How can I secure a Debian installation?
Index(es):
- Date
- Thread