barbagrigia/server_hardening.md

Forked from couto/server_hardening.md

Created November 21, 2016 14:59

Star (0) You must be signed in to star a gist
Fork (0) You must be signed in to fork a gist

Learn more about clone URLs
Clone this repository at <script src="https://gist.github.com/barbagrigia/df3edb69fcb42a849827c37675c32e27.js"></script>
Save barbagrigia/df3edb69fcb42a849827c37675c32e27 to your computer and use it in GitHub Desktop.

Download ZIP

Raw

server_hardening.md

Server Hardening Checklist

This is mostly a checklist of things that I need to research and automate.

OpenSSH Hardening:

Automated Security Updates

UnattendedUpgrades

Users/Groups

Permissions
Password requirements
- libpam-cracklib

IPTables
SELinux or/and GRSecurity ? (Need to research this)
HIDS (Host-based Intrusion Detection System)

OSSEC

Increase entropy by ensuring randomness

Useful links (in no particular order)

Note: If you somehow find this gist, feel free to leave comments with tips, critics, whatever...

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment