Re: [Ilugc] How to secure Linux server from hackers
Hi, On Tue, Dec 1, 2009 at 7:32 AM, Natarajan V raja...@gmail.com wrote: +1 Also, having a reverse proxy in a readonly server to interface with the world and putting the actual webserver in DMZ is also one of the many ways (in addition to firewalls). +3 * Use a file monitoring software like Tripwire * Install an IDS (Snort comes to mind) * Use a vulnerability scanner (Nessus) and fix stuff it reports In general it is a process. Keep your systems up to date and make sure you analyze logs regularly. Regards, -- Shuveb Hussain Any technology sufficiently advanced is indistinguishable from magic. - Arthur C. Clarke Ibn 'Umar said The Messenger of God, may God bless him and grant him peace, took me by the shoulder and said, 'Be in this world as if you were a stranger or a traveller on the road.' Sahih Al-Bukhari, Volume 8, Hadith 425 ___ To unsubscribe, email ilugc-requ...@ae.iitm.ac.in with unsubscribe password address in the subject or body of the message. http://www.ae.iitm.ac.in/mailman/listinfo/ilugc
[Ilugc] How to secure Linux server from hackers
Dear Friends, we have setup server with centos in remote place.we have only default security settings .how can we prevent our server from hackers.Guide me to handle it.Thanks in advance. Thanks and Regards, Ramkumar C -- www.opennetguru.com ___ To unsubscribe, email ilugc-requ...@ae.iitm.ac.in with unsubscribe password address in the subject or body of the message. http://www.ae.iitm.ac.in/mailman/listinfo/ilugc
Re: [Ilugc] How to secure Linux server from hackers
On Monday 30 Nov 2009 1:47:14 pm Ramkumar wrote: we have setup server with centos in remote place.we have only default security settings .how can we prevent our server from hackers.Guide me to handle it.Thanks in advance. security is a process - so watch /var/log/messages and see what the hackers are upto (you *did* disable ftp and telnet?). If you have a mail server make sure you have smtp auth. And I hope you are not serving anything from document root and are using parametrised sql queries. -- regards kg http://lawgon.livejournal.com ___ To unsubscribe, email ilugc-requ...@ae.iitm.ac.in with unsubscribe password address in the subject or body of the message. http://www.ae.iitm.ac.in/mailman/listinfo/ilugc
Re: [Ilugc] How to secure Linux server from hackers
Hi, On Monday 30 Nov 2009 1:47:14 pm Ramkumar wrote: we have setup server with centos in remote place.we have only default security settings .how can we prevent our server from hackers.Guide me to handle it.Thanks in advance. There are a lot of issues you are talking about. It depends on what services you are running on your server, what is the server configuration, etc. 1) Maintain a log of what is going on and watch it regularly. 2) Have only required services running, disable all other services. 3) Use secure services like SFTP instead of plain text FTP, and https instead of http if possible and if necessary, so that MITM attacks are minimized. 4) Provide authentication in whatever service you are providing. 5) Have proper and secure input processing wherever possible (to prevent SQLi and XSS, etc). 6) Use firewalls and make sure you are secure against DOS and DDOS. There are a lot more but it depends on what services you are providing. Please be specific and provide the necessary data. -- Cheers, Hrishikesh Murali ___ To unsubscribe, email ilugc-requ...@ae.iitm.ac.in with unsubscribe password address in the subject or body of the message. http://www.ae.iitm.ac.in/mailman/listinfo/ilugc
Re: [Ilugc] How to secure Linux server from hackers
Hi Ram, On Mon, Nov 30, 2009 at 1:47 PM, Ramkumar ramkumar...@gmail.com wrote: Dear Friends, we have setup server with centos in remote place.we have only default security settings .how can we prevent our server from hackers.Guide me to handle it.Thanks in advance. Try Bastille linux (or Bastille unix.. whatever). -- Sai Krishna M I love Freedom ___ To unsubscribe, email ilugc-requ...@ae.iitm.ac.in with unsubscribe password address in the subject or body of the message. http://www.ae.iitm.ac.in/mailman/listinfo/ilugc
Re: [Ilugc] How to secure Linux server from hackers
On Mon, Nov 30, 2009 at 1:47 PM, Ramkumar ramkumar...@gmail.com wrote: Dear Friends, we have setup server with centos in remote place.we have only default security settings .how can we prevent our server from hackers.Guide me to handle it.Thanks in advance. I'd suggest you use OpenBSD or Engarde Linux. I've tried Engarde, it is very good from the security point of view, but you need another client to use the web interface. And whatever flavour you use, keep an eye on the log, use an IDS (Engarde has one) and turn off needless services. I agree with KG Security is a process. [1] http://www.engardelinux.org/ -- Salvadesswaran Srinivasan http://www.twitter.com/salva_eswar http://queasyquagmire.wordpress.com ___ To unsubscribe, email ilugc-requ...@ae.iitm.ac.in with unsubscribe password address in the subject or body of the message. http://www.ae.iitm.ac.in/mailman/listinfo/ilugc
Re: [Ilugc] How to secure Linux server from hackers
Hello Ramkumar, On 11/30/2009 01:47 PM, Ramkumar wrote: Dear Friends, we have setup server with centos in remote place.we have only default security settings .how can we prevent our server from hackers.Guide me to handle it.Thanks in advance. If you have to ask here how to do this, you are probably not well equipped to reliably secure a server at the moment. If this is a production server with important data, I would suggest hiring a capable professional to at least set things up for you. That said, i have found these NSA guidelines being cited very frequently as a good and comprehensive starting point to securing your server: http://www.nsa.gov/ia/guidance/security_configuration_guides/operating_systems.shtml#linux2 HTH cheers, - steve -- random non tech spiel: http://lonetwin.blogspot.com/ tech randomness: http://lonehacks.blogspot.com/ what i'm stumbling into: http://lonetwin.stumbleupon.com/ ___ To unsubscribe, email ilugc-requ...@ae.iitm.ac.in with unsubscribe password address in the subject or body of the message. http://www.ae.iitm.ac.in/mailman/listinfo/ilugc
Re: [Ilugc] How to secure Linux server from hackers
On Mon, Nov 30, 2009 at 2:52 PM, Hrishikesh Murali fnk...@gmail.com wrote: 1) Maintain a log of what is going on and watch it regularly. 2) Have only required services running, disable all other services. 3) Use secure services like SFTP instead of plain text FTP, and https instead of http if possible and if necessary, so that MITM attacks are minimized. 4) Provide authentication in whatever service you are providing. 5) Have proper and secure input processing wherever possible (to prevent SQLi and XSS, etc). 6) Use firewalls and make sure you are secure against DOS and DDOS. +1 Also, having a reverse proxy in a readonly server to interface with the world and putting the actual webserver in DMZ is also one of the many ways (in addition to firewalls). ___ To unsubscribe, email ilugc-requ...@ae.iitm.ac.in with unsubscribe password address in the subject or body of the message. http://www.ae.iitm.ac.in/mailman/listinfo/ilugc