LinuxQuestions.org
Visit Jeremy's Blog.
Home Forums Tutorials Articles Register
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Server
Reload this Page hardening a debian squeeze server
User Name
Password
Linux - Server This forum is for the discussion of Linux Software used in a server related context.

Notices


Reply
  Search this Thread
Old 03-07-2012, 07:47 PM   #1
rbees
Member
 
Registered: Mar 2004
Location: northern michigan usa
Distribution: Debian Squeeze, Whezzy, Jessie
Posts: 921

Rep: Reputation: 46
hardening a debian squeeze server

is it safe, meaning the system will function correctly, to remove the marked users/groups

bin
sys
sync **delete**
man
uucp
proxy **delete**
www-data **delete**
backup
list **delete**
gnats **delete**
nobody
libuuid
Debian-exim **delete**
statd
messagebus

The system is a rebuild for an external firewall/dns(cacheing) bastion host. A distro-upgrade of the existing has caused problems ;(

Anyway what do you think? Still checking google.

Thanks.
 
Old 03-07-2012, 08:49 PM   #2
rbees
Member
 
Registered: Mar 2004
Location: northern michigan usa
Distribution: Debian Squeeze, Whezzy, Jessie
Posts: 921

Original Poster
Rep: Reputation: 46
there is also this list of groups that I would like to pare down

bin
sys
adm
tty
disk **delete**
man
proxy **delete**
kmem
dip
www-data **delete**
backup
operator **delete**
list
src **delete**
gnats
shadow
utmp
video **delete**
sasl
plugdev
users
nogroup **delete**
libuuid
crontab
Debian-exim
mlocate
ssh
bind
messagebus
utempter

Thanks
 
Old 03-07-2012, 09:00 PM   #3
elfenlied
Member
 
Registered: Dec 2004
Posts: 83

Rep: Reputation: 8
As long as any services / daemons that may use those accounts aren't required I don't see why not. Although as long as an account doesn't have a password and can't login it shouldnt cause you any harm.
 
Old 03-08-2012, 10:14 PM   #4
rbees
Member
 
Registered: Mar 2004
Location: northern michigan usa
Distribution: Debian Squeeze, Whezzy, Jessie
Posts: 921

Original Poster
Rep: Reputation: 46
ended up putting the users I deleted back into the system

Instead of deleteing run "passwd -l <username>", and set their login shell to /bin/nologin or /bin/false
on those users you want to disable
 
  


Reply



Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
Hardening my Debian server locust76 Linux - Security 1 11-17-2011 04:04 AM
LXer: How to add Debian Squeeze to your Debian Lenny FAI install server LXer Syndicated Linux News 0 09-08-2011 07:21 PM
Various segmentation faults Debian Squeeze Virtualbox running on Debian Squeeze host fordwrench Debian 1 07-21-2011 03:55 AM
LXer: amon.so: Hijacking System Calls For Hardening PHP - Debian Lenny And Squeeze LXer Syndicated Linux News 0 04-11-2011 02:30 PM
LXer: The Perfect Server - Debian Squeeze (Debian 6.0) ISPConfig 2 LXer Syndicated Linux News 0 02-14-2011 08:00 AM

LinuxQuestions.org > Forums > Linux Forums > Linux - Server

All times are GMT -5. The time now is 06:38 AM.

Contact Us - Advertising Info - Rules - Privacy - LQ Merchandise - Donations - Contributing Member - LQ Sitemap -
Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration