Help answer threads with 0 replies.
Go Back > Forums > Linux Forums > Linux - Security
User Name
Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.


  Search this Thread
Old 05-17-2005, 06:18 AM   #1
Registered: Aug 2003
Location: Essex, UK
Distribution: Windoze 2000, Fedora Core 3
Posts: 325

Rep: Reputation: 30
hardening Fedora


I'd like some advice on how to generally harden up my linux install. Its running with SE linux for a start which i'm sure helps. I was thinking of stopping all servcies that dont need to run for a start? The system is on a DMZ and so only certain ports can get to it anyway.

Also i'm very interest in starting to use encryption? SSL?

I use squirrelmail and i think i can use encryption with that?

Any help in how to get all this working would be grateful. i.e the concepts and any key files i need to modify. i believe this works on certifcates?
Old 05-17-2005, 07:06 AM   #2
Simon Bridge
LQ Guru
Registered: Oct 2003
Location: Waiheke NZ
Distribution: Ubuntu
Posts: 9,211

Rep: Reputation: 198Reputation: 198
This is very general ... so, generally, read around

SELinux - you really need to make sure you understand how this works. There are sites dedicated to it and official whitepapers and stuff.

Stopping Services - gnome > system settings > server settings > services ... and follow your nose. The dialog tells you what each service does. You have to decide if you need it. Keep track of changes you make in case you accidently turn something off that you need. A good one to turn off is RPC.

If your system is on a DMZ - you definately want to harden it. But shouldn't you run your main services from the gateway?

You want to run an SSL server?

Fedora uses GPG encryption - do man gpg for details.
Old 05-17-2005, 08:38 AM   #3
Registered: Aug 2003
Location: Essex, UK
Distribution: Windoze 2000, Fedora Core 3
Posts: 325

Original Poster
Rep: Reputation: 30
ok i'll have a read up about SELinux...

i notcied things like ISDN and pcmcia are running, dont need them.



Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off

Similar Threads
Thread Thread Starter Forum Replies Last Post
hardening slack? Geocritter Slackware 4 07-19-2005 09:04 PM
Hardening Slackware AhYup Slackware 8 03-07-2005 06:35 PM
Linux OS Hardening sachinh Linux - Security 9 09-29-2004 10:47 AM
Hardening RH 9 velan Red Hat 4 06-16-2004 07:40 AM
hardening my security Jalalabee Linux - Security 4 01-06-2004 02:40 PM > Forums > Linux Forums > Linux - Security

All times are GMT -5. The time now is 07:12 AM.

Main Menu
Write for LQ is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration