Network Security: Detailed info on Re: Linux Audit

Subject:	Re: Linux Audit
Date:	Sun, 20 Aug 2006 19:46:09 -0400 (EDT)

I would also be interested, my own checklist in the past has been: 1) no remote root login via ssh 2) every user in /etc/passwd with a valid shell has a secure pw 3) only 1 service (not including ssh) accessible remotely 4) IPtables rules very specifically allowing only authorized ingress and egress 5) up2date and rhn subscribed and working

This is just what I can remmber at the moment, there are a lot of fixes I put in when I am sitting at the console and remember, and most of the really relevant fixes are service specific, perhaps it would help if you specified what services you are concerned about? I assume you are referring to a server set up with RHEL, if you are referring to a WS, that is a whole 'nother can of worms.


On Thu, 17 Aug 2006, Mohammad Hadidi wrote:

Hi all,

I was wondering if anyone can  recommend a Linux Audit checklist or
template especially on Red hat.


Thanks

<Prev in Thread]	Current Thread	[Next in Thread>
Linux Audit, Mohammad Hadidi Re: Linux Audit, druid <= Re: Linux Audit, Manuel Arostegui Ramirez Re: Linux Audit, Francisco Pecorella Re: Linux Audit, Jeffrey Chandler Re: Linux Audit, Michael Boman RE: Linux Audit, William Woodhams

Previous by Date:	RE: Linux Audit, William Woodhams
Next by Date:	Re: Linux Audit, Manuel Arostegui Ramirez
Previous by Thread:	Linux Audit, Mohammad Hadidi
Next by Thread:	Re: Linux Audit, Manuel Arostegui Ramirez
Indexes:	[Date] [Thread] [Top] [All Lists]