List of Processes for security reasons - Web Server on DirectAdmin CPanel
Linux - SecurityThis forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
List of Processes for security reasons - Web Server on DirectAdmin CPanel
Dear all,
I have installed Fedora 7 with most of the options unchecked, so its minimum install for the purpose of running DirectAdmin web hosting control panel, which has basic httpd, pop3, smtp, exim and proftpd running. The server specs is a P4 3.0Ghz LGA775 with 2GB RAM on a 300GB SATA2 single hdd.
I wish to ensure the minimal system services run, can an expert check for me if any below is redundant or maybe redundant because I don't really know what these processes below does. I filtered away and these are the ones that I'm unsure if they should be running.
How do i stop some of them from running from system startup? Thanks!
Unfortunately I'm no expert and I couldn't determine your level of skill administering GNU/Linux from here, so this reply could contain things you'd rather not read. First is about your distribution release. F7 is considered kind of old now (F9 is nearing completion) so you should really upgrade to F8. Staying at one release version is not an option with Fedora, so if you can't keep up with the the breakneck speed at which Fedora releases please move to another distribution. CentOS for instance has all the benefits of RHEL minus what you pay for support and updates.
Looking at your OP I guess you're looking to be something like a reseller, making money hosting stuff. Cool. What you don't want is to encounter problems or end up in a situation which keeps you from making money. You're using Fedora. Red Hat and the Fedora Project have some documents you should read about administration. You could argue all of that is a waste of time or you'll do that later but you really do need to up your basic OS usage and administration skills. And being able to install and configure software through whatever panel does make you responsable for the result but unfortunately does not make you a systems administrator overnight.
Simple example. Your process list shows those of type "[name]". These are kernel processes which you can tell not only from their argv[0] but also from the facts that their session ID is either 1 or their parent process ID equals the process ID of another kernel process (/bin/ps -eo pid,ppid,sid,cmd --sort=sid). Discarding those you end up with a host of processes some of which it isn't easy to see where they're from. Since you use RPM you can then use 'rpm -q --whatprovides name' to see what package it belongs to. (Might need to to check the process ID /proc/$PID/exe which points to a binary (readlink -f /proc/2348/exe) for some). In your case PID 2348 is /sbin/mingetty and the package name is "mingetty". To find out about this package "rpm -qi mingetty" shows some info and "rpm -ql mingetty" lists the package contents. Need more info? "rpm -ql mingetty|grep man/" shows you which manual pages the package contains, so "man mingetty" should get you the details. With these simple steps exploring your system will be easier and you then have the information yourself to determine *if* you should run a process.
And that's only the beginning. Have you heard about system hardening?
Anyway. If you think this was all of that is a waste of time I'll just throw out a list of procs which may or may not be unnecessary: anacron microcode_ctl ntpd cups irqbalance pcscd NetworkManager avahi-daemon dhcdbd NetworkManagerDispatcher avahi-dnsconfd named.back rdisc wpa_supplicant cpuspeed ip6tables. YMMV(VM) :-]
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.