ML
    • Recent
    • Categories
    • Tags
    • Popular
    • Users
    • Groups
    • Register
    • Login

    Doublecheck the Security of Your Linux

    Scheduled Pinned Locked Moved Starwind
    linux serverlinuxcybersecurity
    7 Posts 5 Posters 792 Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • OksanaO
      Oksana
      last edited by

      1200_628_Learn-How-to-Enhance-Linux-Cybersecurity.png
      Users often take Linux or other OS vendors at their word for being foolproof and not needing additional security levers. Sysadmins don’t have the luxury of thinking that way. Otherwise, certain shady characters will aim for this weak spot and compromise your IT infrastructure. Fortunately, several tips can substantially toughen up your Linux servers.

      Read the full article by Benoit Voirin, a Cyber Security consultant, about which commands and steps you should make to harden your Linux servers’ security right now.

      1 Reply Last reply Reply Quote 0
      • IRJI
        IRJ
        last edited by

        Just a couple notes from the article:

        1. You cannot set a bootloader password for AWS or other cloud services

        2. Apt Armor is specific to Ubuntu / Debian. SELinux is used on RHEL / CentOS / Fedora

        1 1 Reply Last reply Reply Quote 6
        • dbeatoD
          dbeato
          last edited by

          Also changing the SSH Port is not a guarantee that your SSH Port won't be exploited.

          scottalanmillerS IRJI 2 Replies Last reply Reply Quote 1
          • scottalanmillerS
            scottalanmiller @dbeato
            last edited by

            @dbeato said in Doublecheck the Security of Your Linux:

            Also changing the SSH Port is not a guarantee that your SSH Port won't be exploited.

            Just makes the logs easier to read, if you are reading them 😉

            dbeatoD 1 Reply Last reply Reply Quote 1
            • dbeatoD
              dbeato @scottalanmiller
              last edited by

              @scottalanmiller Yup.

              1 Reply Last reply Reply Quote 0
              • IRJI
                IRJ @dbeato
                last edited by

                @dbeato said in Doublecheck the Security of Your Linux:

                Also changing the SSH Port is not a guarantee that your SSH Port won't be exploited.

                CIS is weird. They dont care about SSH, but want you to change your database ports. Considering Many apps are three tiered, its almost like having an enemy army breach your outer walls, take over your city, and instead of fleeing the castle you decide that hiding in it is a valid strategy.

                1 Reply Last reply Reply Quote 3
                • 1
                  1337 @IRJ
                  last edited by 1337

                  @IRJ said in Doublecheck the Security of Your Linux:

                  Just a couple notes from the article:

                  1. You cannot set a bootloader password for AWS or other cloud services

                  2. Apt Armor is specific to Ubuntu / Debian. SELinux is used on RHEL / CentOS / Fedora

                  AppArmor is default on SUSE as well. And you can run SELinux on Debian / Ubuntu if you want.

                  BTW, AppArmor just replaced SELinux as default on Debian 10. So that was only a couple of months ago.

                  1 Reply Last reply Reply Quote 1
                  • 1 / 1
                  • First post
                    Last post