Find the answer to your Linux question:
Results 1 to 2 of 2
Hi, I need help from this forum regarding “Securing Linux Boxes”. We have around 100 Linux Boxes which are needed to be secured. For example, if anybody gets root access ...
Enjoy an ad free experience by logging in. Not a member yet? Register.
  1. #1
    Linux Newbie
    Join Date
    May 2012
    Posts
    110

    How to SECURE Linux Boxes ?


    Hi,

    I need help from this forum regarding “Securing Linux Boxes”.

    We have around 100 Linux Boxes which are needed to be secured.

    For example, if anybody gets root access and try to fire out commands then we must be able to Track that person, who fired out those commands?

    Who tried to ‘manipulated the server?

    Who misfired wrong commands in that particular server ?

    These things we must be able to Track …

    So, can anybody help me in knowing How to do this ?


    Regards,
    Aparna.

  2. #2
    Trusted Penguin
    Join Date
    May 2011
    Posts
    4,307
    Look into SELinux. It is a kernel-based, modular means of locking down a system. It is not easy or straight-forward, but it does the job. Look into this guide:

    Security-Enhanced Linux

    You should also consider a firewall (iptables) as part of your systems.

    The audit daemon should also be running.

    You should disable remote (SSH, e.g.) root logins to the boxes. Users wanting root should have to su/sudo up, in which case their activity will be logged.

    You may want to consider BIOS passwords, in order to prevent booting via untrusted media, and password-protecting the boot-loader (grub, etc.).

    Physical security of the boxes is also important.

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •