LinuxQuestions.org
Review your favorite Linux distribution.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Distributions > Slackware
User Name
Password
Slackware This Forum is for the discussion of Slackware Linux.

Notices



Reply
 
Search this Thread
Old 04-07-2014, 11:06 AM   #16
Habitual
Senior Member
 
Registered: Jan 2011
Distribution: Undecided
Posts: 3,619
Blog Entries: 1

Rep: Reputation: Disabled

Quote:
Originally Posted by NaTTaN View Post
I think it's time to harden the security
Define "security".
 
Old 04-07-2014, 08:05 PM   #17
ReaperX7
Senior Member
 
Registered: Jul 2011
Location: California
Distribution: LFS-7.6, Slackware 14.1, FreeBSD 10.1
Posts: 3,834
Blog Entries: 15

Rep: Reputation: 1188Reputation: 1188Reputation: 1188Reputation: 1188Reputation: 1188Reputation: 1188Reputation: 1188Reputation: 1188Reputation: 1188
Having root login actually is beneficial to Slackware as it allow an administrator a direct login, while sudo can often be hit or miss with certain executions. By allowing root login, an administrator in administrator mode runlevel 2, can easily diagnose and fix a system, and if the passwords are strong and security is properly maintained, root login can be extremely useful as a tool.

I don't recommend it for day-to-day actions, but there are some things you can only do as root that sudo can't.

As far as PAM... PAM can be compromised and if it is compromised it can render a system completely locked out even to root. PAM is best left alone in my opinion.
 
Old 04-08-2014, 05:53 AM   #18
Geist
Member
 
Registered: Jul 2013
Distribution: Slackware 14 / current
Posts: 31

Rep: Reputation: Disabled
Quote:
Originally Posted by allend View Post
Evidence?
Slackware seems to use the upstream SSH default configuration and that configuration does allow password and remote root login by default.
It also is very lenient on retries and other things.

The SSH config is the first thing I change every time.
 
Old 04-08-2014, 06:28 AM   #19
moisespedro
Senior Member
 
Registered: Nov 2013
Location: Brazil
Distribution: Slackware
Posts: 1,139

Rep: Reputation: 151Reputation: 151
Is just me or you also have problems on trusting SELinux?
 
Old 04-08-2014, 07:53 AM   #20
allend
Senior Member
 
Registered: Oct 2003
Location: Melbourne
Distribution: Slackware-current
Posts: 3,520

Rep: Reputation: 873Reputation: 873Reputation: 873Reputation: 873Reputation: 873Reputation: 873Reputation: 873
Quote:
Slackware seems to use the upstream SSH default configuration and that configuration does allow password and remote root login by default.
It also is very lenient on retries and other things.
Yes - which makes things easier when first configuring ssh.

Quote:
The SSH config is the first thing I change every time.
Good on you. Enforcing protocol 2 only, disabling root login, disabling password authentication and only using authorised keys are all highly desirable configuration changes.
 
Old 04-09-2014, 02:07 PM   #21
l0rddarkf0rce
Member
 
Registered: Nov 2004
Location: Virginia, US
Distribution: Slackware 14.1 multilib
Posts: 87

Rep: Reputation: 18
Quote:
Originally Posted by NaTTaN View Post
Hi, had a lot of time without coming to the forum, now I think it's time to harden the security of my Slackware 14, I looked around on google but didn't find a guide applied to Slackware 14 and the ones I found are old..

Can somebody tell me if there's a paper or a guide applied to Slackware 14? and where can I find it?



greetings
NattaN
Quite an old one, but the guide from the Center for Internet Security is a good basic starting guide... https://benchmarks.cisecurity.org/to...hmark_v1.1.pdf
 
1 members found this post helpful.
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
[SOLVED] How to harden Jboss? szboardstretcher Linux - Software 1 08-01-2011 09:19 PM
How to harden centos 5.4 fw12 Linux - Security 14 12-22-2009 07:13 PM
LXer: How To Harden PHP5 With Suhosin On CentOS 5.3 LXer Syndicated Linux News 0 05-22-2009 05:42 PM
Harden file system protections AssimovT Linux - Security 3 03-16-2006 05:27 AM
Harden RedHat danieltkh Linux - Security 3 08-12-2004 05:00 AM


All times are GMT -5. The time now is 04:53 PM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
identi.ca: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration