Just too many things. For example,
Use update-rc.d or sysv-rc-conf to disable unwanted daemons Edit /etc/security/limits.conf logcheck use integrit/aide/tripwire configrue firewall (via shorewall or iptables directly) etc. You may consider chroot. It's a good idea to read through securing debian howto http://www.debian.org/doc/manuals/securing-debian-howto/ On Wed, 2008-05-07 at 11:09 +0200, Jean-Paul Lacquement wrote: > Hi, > > I plan to secure my Debian stable (or testing if you say it's better) server. > > > I already did the followings: > - installed chkrootkit > - installed fail2ban (for ssh and proftpd) > - allow only one user (not root) via /etc/ssh/sshd_config, only ssh v2 > > > The followings daemon are installed : > - proftpd > - apache2 > - ssh > > Would you please list me which packages to install and which rules to apply ? > > Many thanks, > Jean-Paul > >
signature.asc
Description: This is a digitally signed message part