Securing and Hardening Linux

Aus crazylinux.de
Version vom 9. Januar 2007, 20:38 Uhr von Jonathan (Diskussion | Beiträge) (cat)
(Unterschied) ← Nächstältere Version | Aktuelle Version (Unterschied) | Nächstjüngere Version → (Unterschied)
Zur Navigation springen Zur Suche springen

ein guten Artikel zum Thema gibts unter http://www.puschitz.com/SecuringLinux.shtml:

Contents

  • General
  • Removing Unnecessary Software Packages (RPMs)
  • Patching Linux Systems
  • Detecting Listening Network Ports
  • Closing Network Ports and Disabling Runlevel System Services
  • Closing Network Ports and Disabling Xinetd Services
  • Reviewing Inittab and Boot Scripts
  • Restricting System Access from Servers and Networks
  • Securing SSH
  • Securing Postfix
  • Securing Sendmail
  • Securing NFS
  • Copying Files Using SSH Without Providing Login Prompts
  • Kernel Tunable Security Parameters
  • Checking File Permissions and Ownership
  • Checking Accounts
  • Enabling Password Aging
  • Enforcing Stronger Passwords
  • Restricting Use of Previous Passwords
  • Locking User Accounts After Too Many Login Failures
  • Restricting Direct Login Access for System and Shared Accounts
  • Restricting su Access to System and Shared Accounts
  • Preventing Accidental Denial of Service
  • Displaying Login Banners
  • Miscellaneous
  • Bibliography and References