Originally Posted by johndev
For a new Ubuntu box, what would be the security checklist for a new box?
You're asking a big open-ended question, but I'll try to get you started. Step one would be to do a google search for "Ubuntu security", but here are some general rules.
1. Use a firewall.
2. Learn to properly use UNIX permissions and make sure you always use the fewest permissions needed. A lot of newbies will "chmod 777" a file or directory when they have permission issues, which is very bad.
3. Use your machine as a normal user and not as root. Learn to use sudo.
4. Remove and disable any un-needed services. For example, if you don't need a mail server running, remove postfix.
5. Use TCP wrappers to lock down serviced you do need available.
There are a lot of general rules too, like use a strong password, encrypt sensitive data (TrueCrypt), keep regular backups, etc. That should get your started, but do a lot of google research too.