



Study with the several resources on Docsity
Earn points by helping other students or get them with a premium plan
Prepare for your exams
Study with the several resources on Docsity
Earn points to download
Earn points by helping other students or get them with a premium plan
A checklist for securing linux systems, covering topics such as securing accounts and groups, the file system, and services that run on the system. It includes instructions for setting passwords, disabling remote root logins, checking file ownerships and permissions, and configuring services like ftp and ssh.
Typology: Lab Reports
1 / 6
This page cannot be seen from the preview
Don't miss anything!




A. Securing Your System’s Accounts and Groups
# /etc/rc.d/init.d/xinetd restart (only if the service is an xinetd-based service) b. If your system is not a mail server, there is a good chance that it does not need to run sendmail at all: If so, turn off sendmail using the syntax shown above. c. Some mail clients such as elm, however, may need sendmail:
e. If you need to run FTP, but do not need anonymous FTP, disable anonymous FTP:
** ro ro** i. If you have a workstation that does not need to run any services (http, ftp, and so forth) that need to be accessed by other remote users, the best thing to do is disable xinetd altogether by entering: **# /etc/rc.d/init.d/xinetd stop
IMPORTANT NOTE: If you need to run a Web server, you’ll need to ensure that it runs securely. An insecure Web server can be one of the easiest ways an attacker can gain unauthorized access to the host on which the Web server runs. See the Apache Web Guideline.