NAVIGATION
CATEGORIES
REFERRENCE
LINKS
Linux Audit
5 answers - 141 bytes -
Hi all,
I was wondering if anyone can recommend a Linux Audit checklist or
template especially on Red hat.
ThanksNo.1 | | 1080 bytes |
| 
I would also be interested, my own checklist in the past has been:
1) no remote root login via ssh
2) every user in /etc/passwd with a valid shell has a secure pw
3) only 1 service (not including ssh) accessible remotely
4) IPtables rules very specifically allowing only authorized ingress and
egress
5) up2date and rhn subscribed and working
This is just what I can remmber at the moment, there are a lot of fixes I
put in when I am sitting at the console and remember, and most of the
really relevant fixes are service specific, perhaps it would help if you
specified what services you are concerned about? I assume you are
referring to a server set up with RHEL, if you are referring to a WS, that
is a whole 'nother can of worms.
Thu, 17 Aug 2006, Mohammad Hadidi wrote:
Hi all,
>
>
>
I was wondering if anyone can recommend a Linux Audit checklist or
template especially on Red hat.
>
>
>
>
ThanksNo.2 | | 382 bytes |
| El Jueves, 17 de Agosto de 2006 08:06, Mohammad Hadidi :
Hi all,
>
>
>
I was wondering if anyone can recommend a Linux Audit checklist or
template especially on Red hat.
>
>
>
>
Thanks
Maybe you could search on:
http://www.linuxsecurity.com/
Hope it helpsNo.3 | | 439 bytes |
| Check out Center for Internet Security's (CIS) Security Benchmark for
Linux ().
Best regards
Michael Boman
8/17/06, Mohammad Hadidi <mohammad.hadidi (AT) gmail (DOT) comwrote:
Hi all,
>
>
>
I was wondering if anyone can recommend a Linux Audit checklist or
template especially on Red hat.
>
>
>
>
ThanksNo.4 | | 42 bytes |
| Mohammad,
Check the following link:No.5 | | 563 bytes |
| Also,
When having a conversation regarding security hardening guides and
Linux, it's tough to leave Bastille Linux out of the mix.
http://www.bastille-linux.org/
It walks you through a security checklist and makes changes
accordingly for you based on your responses. It also provides a
simple way to revert back to the previous security configuration if it
is too restrictive for your system.
Jeff
8/18/06, Francisco Pecorella <fpecor (AT) cantv (DOT) netwrote:
Mohammad,
Check the following link:
QUESTION ON "Linux Security"
- AppArmor and vsftpd
- SUSE Security Announcement: kernel (SUSE-SA:2006:049)
- SUSE Security Announcement: MozillaFirefox, MozillaThunderbird,
- A bug in SLES10
- SUSE Security Announcement: kernel security problems
- SUSE Security Announcement: clamav (SUSE-SA:2006:046)
- SUSE Security Summary Report SUSE-SR:2006:019
- SPAM: SPAM: nntp client behind suse firewall
- SPAM: nntp client behind suse firewall
- SPAM: nntp client behind suse firewall
- password memory
- password memory
- SPAM: AppArmor and vsftpd
- Command line version of You
- Please cancel my e-mails
- susefirewall2 problem (SuSE 10.1)
- YOU fails to update libzypp (rug)
- postfix and apparmour
- Impenetrable firewall - SuSE 9.2
- antivir updates not working anymore under 10.0?