:Puschitz: Securing and Hardening Linux Production Systems
Puschitz: Securing and Hardening Linux Production Systems Jun 25, 2006, 13 :00 UTC (1 Talkback[s]) (11804 reads) (Other stories by Werner Puschitz)
"This Linux Security HOWTO is intended for a technical audience, Linux system administrators, and security people in corporations and organizations that have to use commercial Linux distributions for their production environment. If you are a Linux expert you may not find lots of new stuff here but you will have a difficult time to find documentation on various things like restricting su access to system and shared accounts which is covered in this article, see Restricting su Access to System and Shared Accounts. And if you need to make Linux production systems compliant with various audit requirements, then this article should be a good start. The main objective of this Linux Security guide is to discuss basic Linux security requirements including account policies for production systems that are being audited. This document covers various system services like SSH which is usually enabled and needed on all Linux production servers. Services like Apache, Samba etc. are not covered here. These services are applications which are usually not needed on all Linux systems and therefore should not be installed everywhere. In fact, these applications warrant their own security HOWTO. Also, this article does not cover security features which require kernel patching. This is not an option for most companies due to vendor support issues..."
