[olug] securing rh7.2 box

David Walker linux_user at grax.com
Thu Aug 22 15:32:42 UTC 2002


netstat --inet -nlp

If any services other than smtp/postfix/master are listening on to a 
non-localhost address or 0.0.0.0 (all addresses) shut them down
If you need any external shell access configure ssh on a non-standard 5 digit 
port.

On Thursday 22 August 2002 10:09 am, (Via wrote:
> Greetings:
> Having install 7.2 with all updates using apt-get (very nice package --
> should check it out) with Bastille-Linux I am fuzzy on where to begin.
>
> I need to harden this box for Internet usage. i.e. it will be a smtp
> gateway for our company. would like to secure this machine to a very a
> reasonable level (which is??? please suggest!).
>
> Next process will be replace sendmail with postfix (no offense to
> sendmail fantics). done just finished a few minutes ago
>
> Run Bastille-linux. done.
>
> Further shutdown unneeded services. next
>
> replace ipchains with iptables.
>
> Have downloaded Securing & Optim. Linux v1.3 from www.openna.com and
> will work thru this doc.
>
> Any other suggestions?
>
> Roger
>
>
>
>
> _______________________________________________
> OLUG mailing list
> OLUG at olug.org
> http://lists.olug.org/mailman/listinfo/olug




More information about the OLUG mailing list