Hardening is a process where security folks try to disable anything that isn't needed for the functions of the server and add in as many security programs as they makes sense. Basically, only run the services you need, take protections in other ways.
Common easy ways to do so include making sure your firewall only allows needed ports and having SSH block an IP after so many incorrect login attempts. What is needed and not is debated among security people, I've seen some suggestions so out there that I wonder if anything can run on it. Some people have created "hardened" distros that have a lot of extra precautions. Some use special kernels, such as PAX which breaks up memory in ways to be hard to exploit. Bastille is a common program used by lazy (or busy) sysadmins to get themselves a degree of extra protection from there box. http://bastille-linux.sourceforge.net/ -------------------- m2f -------------------- Sent using Mail2Forum (http://www.mail2forum.com). Read this topic online here: http://forums.blagblagblag.org/viewtopic.php?p=26212#26212 -------------------- m2f --------------------
_______________________________________________ blag-users mailing list [email protected] https://www.autistici.org/mailman/listinfo/blag-users
