“This Linux Security HOWTO is intended for a technical audience,
Linux system administrators, and security people in corporations
and organizations that have to use commercial Linux distributions
for their production environment. If you are a Linux expert you may
not find lots of new stuff here but you will have a difficult time
to find documentation on various things like restricting su access
to system and shared accounts which is covered in this article, see
Restricting su Access to System and Shared Accounts. And if you
need to make Linux production systems compliant with various audit
requirements, then this article should be a good start. The main
objective of this Linux Security guide is to discuss basic Linux
security requirements including account policies for production
systems that are being audited. This document covers various system
services like SSH which is usually enabled and needed on all Linux
production servers. Services like Apache, Samba etc. are not
covered here. These services are applications which are usually not
needed on all Linux systems and therefore should not be installed
everywhere. In fact, these applications warrant their own security
HOWTO. Also, this article does not cover security features which
require kernel patching. This is not an option for most companies
due to vendor support issues…”