[PLUG] Linux Security Quickstart?

Don Buchholz buchholz at easystreet.com
Thu Sep 23 09:55:03 PDT 2004


Michael Rasmussen wrote:

>On Thu, Sep 23, 2004 at 02:42:21PM +0000, j a wrote:
>  
>
>>I have a Fedora Core 2 box and am about to get a DSL connection.  Before I 
>>hook up, I'd like to increase my security.  Can anyone recommend a good 
>>Linux Security Quickstart for Dummies?  I don't know anything about 
>>networking, how to close ports, set up a firewall, etc.
>>    
>>
>
>1) Fedora Core 2 offers to set up firewalling as part of the setup.  Accept the offer.
>2) as root on your new FC2 box run `chkconfig --list | grep on`  That will give you a 
>   list of running services.  Figure out what you don't need and shut them down with
>   chkconfig --del <unneeded service> && /etc/init.d/<unneeded service> stop
>
IIRC (from the Taroon-list mail list), it is better to use 'chkconfig 
<unneeded service> off'
than to use '--del'.  The stated reason was that after an upgrade, a 
"deleted" service would
be re-enabled, but the "off" setting would be honored and the would not 
re-enable the
undesired daemon(s).

>3) Bastille will walk you through the process of security hardening your box while
>   teaching you about the issues.  You can learn more and get a copy at
>   http://www.bastille-linux.org/
>
>After you've done the above remember that we're always here.
>
>Having said all that, a firewall or an operating firewall on your box  is the #1
>line of protection.   Remember to control what goes out as well what comes in.
>
>  
>





More information about the PLUG mailing list