LinuxQuestions.org
Latest LQ Deal: Latest LQ Deals
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Security
User Name
Password
Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.

Notices


Reply
  Search this Thread
Old 02-23-2005, 03:13 PM   #1
Dogit
Member
 
Registered: Feb 2005
Distribution: Suse 9.0,9.2 Pro
Posts: 67

Rep: Reputation: 15
Smile Security checklist


Hello,To all

Just trying to be on the safe side here.
please have a look if there is some other
item/items that anyone thinks i should add
please just say so

well so far here it is

Snort

Tripwire

Iptables

F-prot | Anti

Rkhunter

Chkrootkit

Root pass to = 10

Note: this is before i go online to do a full update
of Suse9.0 Pro

there it is Pros see something i should drop or
add just say so well that's it for now

Thank you
 
Old 02-23-2005, 03:33 PM   #2
Matir
LQ Guru
 
Registered: Nov 2004
Location: San Jose, CA
Distribution: Ubuntu
Posts: 8,507

Rep: Reputation: 128Reputation: 128
Did you disable any unneeded services? There's a lot more that COULD be done, but you seem to have gotten the major points down. Check all user accounts are either disabled or have secure passwords.
 
Old 02-23-2005, 03:58 PM   #3
Dogit
Member
 
Registered: Feb 2005
Distribution: Suse 9.0,9.2 Pro
Posts: 67

Original Poster
Rep: Reputation: 15
Smile

Hello,Matir

First thanks for taking the time to reply no
i,am stell trying to find this type of info. not
sure what to keep or stop could you maybe

please give me a head's up on this
what should i keep from running on
this Suse & how do i go about doing it

OPPs sorry when you say this here

Check all user accounts are either disabled or have secure passwords.

it's just me on all my puters so as long as i
have a password for my root & user name
i should be ok Yes/No

Thank you

Last edited by Dogit; 02-23-2005 at 04:07 PM.
 
Old 02-23-2005, 06:29 PM   #4
nex6
Member
 
Registered: Apr 2004
Distribution: Ubuntu;Debain;Redhat
Posts: 46

Rep: Reputation: 16
There are alot of pretty good Linux and Unix based security guides out there like:

http://www.cert.org/tech_tips/usc20_full.html

other things to remember is:

1 fully patch

2 remove any not used services

3 correctly setup all services (like NFS, samba etc)

4 host based firewall and control access with tcp_wrappers and other access controls to the services

5 good practices, like not using root all the time,

6 consider SElinux, for mandotroy access control if you want to really be parinoid and have the time to mess with it / learn it.

I should give you a start.


-Nex6
 
Old 02-23-2005, 08:33 PM   #5
Dogit
Member
 
Registered: Feb 2005
Distribution: Suse 9.0,9.2 Pro
Posts: 67

Original Poster
Rep: Reputation: 15
Hi,nex6

I thank you as well for your time & for the link
i will have a look at it as soon as i. do some other
things i started boy this is hard work but i like this
linux

Thank you
 
Old 02-24-2005, 01:45 PM   #6
peacebwitchu
Member
 
Registered: Apr 2004
Distribution: Debian
Posts: 185

Rep: Reputation: 30
You might want to install a logchecker like logwatch etc... Keep a copy of the tripwire database on read only media. If you are using ssh disallow root from being able to login. Remote syslog is easy to setup if you have multiple machines.
Restrict su to only members of the wheel group.
 
Old 02-25-2005, 03:38 PM   #7
Dogit
Member
 
Registered: Feb 2005
Distribution: Suse 9.0,9.2 Pro
Posts: 67

Original Poster
Rep: Reputation: 15
Smile

Hi,peacebwitchu

Wow sorry for this late reply trying
to get a ton of things. done at once

man i love this linux stuff & will be
going to Suse9.2 Pro this week

thanks for the info

Great day
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
security checklist ddaas Linux - Security 8 06-17-2005 06:36 AM
slack server checklist babyphil Slackware - Installation 8 06-14-2005 01:39 PM
vpn checklist sanw2k Linux - Networking 1 10-20-2003 04:28 AM
system checklist LLS Linux - Security 1 09-29-2003 01:32 PM
Security CheckList miso Linux - Security 4 11-25-2002 05:23 PM

LinuxQuestions.org > Forums > Linux Forums > Linux - Security

All times are GMT -5. The time now is 09:22 AM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration