noldrin wrote: > > Bastille is a common program used by lazy (or busy) sysadmins to get > themselves a degree of extra protection from their box. > > http://bastille-linux.sourceforge.net/
One thing I like about Bastille is that it offers sysadmins the ability to choose just how "hardened" their server should be. It should be noted that the more extreme settings will break some functionality. My former company relied upon the ability to do password-less ssh as root in order to control HA failover. Whenever a customer suddenly lost the ability to perform failovers, the root cause was invariably a hardened ssh configuration. -------------------- m2f -------------------- Sent using Mail2Forum (http://www.mail2forum.com). Read this topic online here: http://forums.blagblagblag.org/viewtopic.php?p=26219#26219 -------------------- m2f --------------------
_______________________________________________ blag-users mailing list [email protected] https://www.autistici.org/mailman/listinfo/blag-users
