LinuxQuestions.org
Go Job Hunting at the LQ Job Marketplace
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Networking
User Name
Password
Linux - Networking This forum is for any issue related to networks or networking.
Routing, network cards, OSI, etc. Anything is fair game.

Notices



Closed Thread
 
Search this Thread
Old 03-14-2008, 07:38 PM   #1
linux_linux
Member
 
Registered: Mar 2008
Posts: 52

Rep: Reputation: 15
Basic security measures to take connecting a Linux server to the Internet.


I am configuring a CentOS system to act as a PDC for a predominantly Windows-based network (all clients are Windows XP).

This server will be directly connected to the Internet through a small Linksys router, and will have a static IP associated with it. It will provide web services to the public. It must also make SSH available for administration purposes. Any other services will be strictly internal.

What sort of security measures should I implement on this server to keep it secure from outside attack, yet still be administerable from the Internet?

I realize this is a broad question, so a range of answers are possible. I will award points to the most helpful information.
Thanks!
 
Old 03-14-2008, 09:13 PM   #2
MS3FGX
Guru
 
Registered: Jan 2004
Location: NJ, USA
Distribution: Slackware, Debian
Posts: 5,852

Rep: Reputation: 351Reputation: 351Reputation: 351Reputation: 351
Well, limit what ports are open to the Internet from the router, first off. If you just need SSH and WWW, then only open those two ports.

To secure SSH, disable root logins and use strong passwords. You might want to play around with the values for simulations logins, failed authentication attempts, etc to prevent brute-forcing passwords; but really, SSH is very secure and the chances of brute-forcing a password is very low even with the default settings due to the way it handles authentication.

As for securing Apache, that is a bit bigger of an issue. It depends on what modules you need, how the site is going to operate, etc, etc. I would start reading up on Apache security before you go live with the site, you want to know what specific security adjustments apply to you and your site before it is publicly available.
 
Old 03-15-2008, 10:42 PM   #3
Tinkster
Moderator
 
Registered: Apr 2002
Location: in a fallen world
Distribution: slackware by choice, others too :} ... android.
Posts: 23,004
Blog Entries: 11

Rep: Reputation: 903Reputation: 903Reputation: 903Reputation: 903Reputation: 903Reputation: 903Reputation: 903Reputation: 903
I'd like to discourage members to respond to these posts.
This is the product of a SPAM bot.
 
  


Closed Thread


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
running a home server , what security measures should i take firedancer Linux - Security 20 10-30-2007 10:02 AM
Questions About Wireless Security Measures Stan27 General 7 11-23-2006 05:21 AM
addtl security measures slug420 Linux - Security 1 06-10-2005 07:45 PM
Linux Basic security ickram General 4 03-07-2003 06:58 PM


All times are GMT -5. The time now is 07:58 PM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
identi.ca: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration