LinuxQuestions.org
Visit Jeremy's Blog.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Security
User Name
Password
Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.

Notices


Reply
  Search this Thread
Old 05-17-2005, 07:18 AM   #1
GraemeK
Member
 
Registered: Aug 2003
Location: Essex, UK
Distribution: Windoze 2000, Fedora Core 3
Posts: 325

Rep: Reputation: 30
hardening Fedora


Hello,

I'd like some advice on how to generally harden up my linux install. Its running with SE linux for a start which i'm sure helps. I was thinking of stopping all servcies that dont need to run for a start? The system is on a DMZ and so only certain ports can get to it anyway.

Also i'm very interest in starting to use encryption? SSL?

I use squirrelmail and i think i can use encryption with that?

Any help in how to get all this working would be grateful. i.e the concepts and any key files i need to modify. i believe this works on certifcates?
 
Old 05-17-2005, 08:06 AM   #2
Simon Bridge
LQ Guru
 
Registered: Oct 2003
Location: Waiheke NZ
Distribution: Ubuntu
Posts: 9,211

Rep: Reputation: 198Reputation: 198
This is very general ... so, generally, read around

SELinux - you really need to make sure you understand how this works. There are sites dedicated to it and official whitepapers and stuff.

Stopping Services - gnome > system settings > server settings > services ... and follow your nose. The dialog tells you what each service does. You have to decide if you need it. Keep track of changes you make in case you accidently turn something off that you need. A good one to turn off is RPC.

If your system is on a DMZ - you definately want to harden it. But shouldn't you run your main services from the gateway?

You want to run an SSL server?

Fedora uses GPG encryption - do man gpg for details.
 
Old 05-17-2005, 09:38 AM   #3
GraemeK
Member
 
Registered: Aug 2003
Location: Essex, UK
Distribution: Windoze 2000, Fedora Core 3
Posts: 325

Original Poster
Rep: Reputation: 30
ok i'll have a read up about SELinux...

i notcied things like ISDN and pcmcia are running, dont need them.

thanks.
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
hardening slack? Geocritter Slackware 4 07-19-2005 10:04 PM
Hardening Slackware AhYup Slackware 8 03-07-2005 07:35 PM
Linux OS Hardening sachinh Linux - Security 9 09-29-2004 11:47 AM
Hardening RH 9 velan Red Hat 4 06-16-2004 08:40 AM
hardening my security Jalalabee Linux - Security 4 01-06-2004 03:40 PM

LinuxQuestions.org > Forums > Linux Forums > Linux - Security

All times are GMT -5. The time now is 09:33 AM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration