LinuxQuestions.org
Visit Jeremy's Blog.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Security
User Name
Password
Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.

Notices


Reply
  Search this Thread
Old 02-27-2002, 03:53 AM   #1
LinuxGod
LQ Newbie
 
Registered: Aug 2001
Location: Cave Mountain
Distribution: Redhat Only
Posts: 29

Rep: Reputation: 15
Post <Linux Security HOWTO>


After reading some post alot of you have made I have notice questions about security and which linux os is the best and how can I stop hackers from hacking me. Well I am going to answer those questions and hope you take heed to them.

1. How can I secure my system?
Well using any distribution of linux requires some common sense as well, as we all know your system is as secure as your weakest point.

Never install rpm or deb or tgz applications you do not attend to use, or if you do follow-up with paches. Also disable ports you don't attend to use (Alot of you are wondering....How do I do that?) change directory to /etc/ and vi or pico services, now be careful and don't disable critical ports to stop you from logging in. Also remove daemons you don't use or shut them off and make sure you get rid of that telnet and install ssh2 not ssh1 as we know there is a major hack for ssh1 now you can disable ssh1 by pico or vi /etc/ssh/sshd_config
and making sure [ protocol 2 ] not 1 then restart ssh. Also get rid of wu-ftpd and install proftpd you can download this at proftpd.org, I recommend the rpm for redhat users. Also there is a nice package called portsentry that allows you to detect port scans and block them using ipchains or iptables . Sendmail the biggest hole of them all, well I don't use it I use postfix which is easy to install and upgrade from sendmail to it just by downloading the rpm file and typing rpm -uvh postf*.rpm make sure you read the docs to get a clear understanding on how it works, but I think it is pretty simple.

There is alot more I can tell you on this issue but first digest then we will see.

Thanks
 
Old 02-27-2002, 08:33 AM   #2
trickykid
LQ Guru
 
Registered: Jan 2001
Posts: 24,149

Rep: Reputation: 254Reputation: 254Reputation: 254
you know they will still ask, as time goes by, this thread will keep getting further down the list as more questions are asked in this forum.... good information, just not a good idea to post stuff like this, it just gets ignored most of the time.

-trickykid
 
Old 02-27-2002, 12:02 PM   #3
unSpawn
Moderator
 
Registered: May 2001
Posts: 29,409
Blog Entries: 55

Rep: Reputation: 3582Reputation: 3582Reputation: 3582Reputation: 3582Reputation: 3582Reputation: 3582Reputation: 3582Reputation: 3582Reputation: 3582Reputation: 3582Reputation: 3582
I applaud your effort to try and set up some kind of howto, and not to put you off of it, but I think you should be way and way more specific if you want to succeed.

I would like to invite you (all) to add your knowledge to a /security forum FAQ we should start building. This won't become a "howto" I think, cuz there's lotsa howto's (fi. at linuxdoc.org, sans.org or cert.org) that handle (aspects of) security in general or specific, factual and meticulously...
 
Old 05-14-2003, 01:56 PM   #4
scottpioso
Member
 
Registered: Jan 2003
Location: United States of America and damn proud of it!
Distribution: Windows 7 prior Red Hat User
Posts: 473

Rep: Reputation: 30
This is for Linux God. You mention "rid of that telnet and install ssh2 not ssh1 as we know there is a major hack for ssh1 now you can disable ssh1 by pico or vi /etc/ssh/sshd_config"

As you can see, I have included my sshdconfig file. Where would I do what you are suggesting?

# $OpenBSD: ssh_config,v 1.16 2002/07/03 14:21:05 markus Exp $

# This is the ssh client system-wide configuration file. See
# ssh_config(5) for more information. This file provides defaults for
# users, and the values can be changed in per-user configuration files
# or on the command line.

# Configuration data is parsed as follows:
# 1. command line options
# 2. user-specific file
# 3. system-wide file
# Any configuration value is only changed the first time it is set.
# Thus, host-specific definitions should be at the beginning of the
# configuration file, and defaults at the end.

# Site-wide defaults for various options

# Host *
# ForwardAgent no
# ForwardX11 no
# RhostsAuthentication no
# RhostsRSAAuthentication no
# RSAAuthentication yes
"ssh_config" 38L, 1167C
# PasswordAuthentication yes
# HostbasedAuthentication no
# BatchMode no
# CheckHostIP yes
# StrictHostKeyChecking ask
# IdentityFile ~/.ssh/identity
# IdentityFile ~/.ssh/id_rsa
# IdentityFile ~/.ssh/id_dsa
# Port 22
# Protocol 2,1
# Cipher 3des
# Ciphers aes128-cbc,3des-cbc,blowfish-cbc,cast128-cbc,arcfour,aes192-cbc,aes256-cbc
# EscapeChar ~
Host *
ForwardX11 yes
"ssh_config" 38L, 1167C
 
Old 05-14-2003, 02:54 PM   #5
unSpawn
Moderator
 
Registered: May 2001
Posts: 29,409
Blog Entries: 55

Rep: Reputation: 3582Reputation: 3582Reputation: 3582Reputation: 3582Reputation: 3582Reputation: 3582Reputation: 3582Reputation: 3582Reputation: 3582Reputation: 3582Reputation: 3582
Moderator note: Scottpioso, please do not tack on your off topic question to a thread that is rather stale and over a year old: please create your own thread.
 
Old 05-14-2003, 03:44 PM   #6
scottpioso
Member
 
Registered: Jan 2003
Location: United States of America and damn proud of it!
Distribution: Windows 7 prior Red Hat User
Posts: 473

Rep: Reputation: 30
I have no idea what you mean.
 
Old 05-14-2003, 05:11 PM   #7
unSpawn
Moderator
 
Registered: May 2001
Posts: 29,409
Blog Entries: 55

Rep: Reputation: 3582Reputation: 3582Reputation: 3582Reputation: 3582Reputation: 3582Reputation: 3582Reputation: 3582Reputation: 3582Reputation: 3582Reputation: 3582Reputation: 3582
I have no idea what you mean.
1. This thread was made and last added to in 02/2002. In my book that's a rather old thread. Old threads don't need resurrection unless there's a damn good reason. Besides that we haven't heard from Linuxgod since 03/2002 so I would be surprised if he would actually answer :-]
2. The question you ask does not contribute to the topic of this thread.

Vous comprendez?
 
Old 05-14-2003, 05:25 PM   #8
scottpioso
Member
 
Registered: Jan 2003
Location: United States of America and damn proud of it!
Distribution: Windows 7 prior Red Hat User
Posts: 473

Rep: Reputation: 30
Okay, fine.
 
Old 05-14-2003, 05:34 PM   #9
unSpawn
Moderator
 
Registered: May 2001
Posts: 29,409
Blog Entries: 55

Rep: Reputation: 3582Reputation: 3582Reputation: 3582Reputation: 3582Reputation: 3582Reputation: 3582Reputation: 3582Reputation: 3582Reputation: 3582Reputation: 3582Reputation: 3582
Btw, answering your question, if you have OpenSSH-v3.x, in the sshd_config the "Protocol 2,1" directive tells sshd what protocol versions to accept.
This should read "Protocol 2" to get rid of ssh clients trying to connect with ssh1.
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
help needed in security ,vonarabilities ,loopholes in linux security haseebnazar Linux - Security 2 11-23-2005 07:16 PM
security checks (howto)? carboncopy Linux - Security 4 01-08-2005 08:00 AM
todays requirements regarding security (not limited to linux security) markus1982 Linux - Security 8 04-25-2004 10:58 PM
Linux security Vs Windows security keene General 50 11-01-2003 11:22 PM
Linux Security HOWTO markus1982 Linux - Security 3 11-11-2002 05:10 PM

LinuxQuestions.org > Forums > Linux Forums > Linux - Security

All times are GMT -5. The time now is 11:16 AM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration