Ben <[EMAIL PROTECTED]>
> Recently my friend and I set up a linux box for him and put it on
> the net 24/7. Now he has given some accounts to some not very trust
> worthy people.
> Could I get some suggestions on security improvements I could put on?
> I am very knew to being an admin and I dont even have my own box.
> I have done password shawdowing, but that is about it. I would apreciate
> any and all suggestions.
http://www.ora.com, [EMAIL PROTECTED] (O'Reilly are one of the best publishers.)
Consider carefully what software is on the box. If you don't need it
then nuke it. (chmod and pgp give you a temporary means to remove things
if in doubt. Anyway with rpm nothing is that hard to reinstate.)
Search for setuid & setgid programs. These are candidates for especially
close scrutiny. Use mount options noexec,nodev whereever possible.
chattr is your friend.
Take regular backups and check what is happening on the box. Log changes
you make so you can rebuild to the current state and determine whether a
change you observe is authorised.
You didn't say what these untrusted users have access for. That could
help list members in thinking how to handle them. Maybe a restricted
shell is in order (use together with chroot). You also didn't tell us
the OS version, or much about the configuration. For something on the
net you'll want to restict the set of services running, and maybe screen
IP on remaining services.
Incoming telnet and ftp reveal your passwords. Consider using ssh
for network access.
Be sure to follow the redhat-announce list closely.
--
##############################################################
# Antonomasia [EMAIL PROTECTED] #
# See http://www.notatla.demon.co.uk/ #
##############################################################
--
PLEASE read the Red Hat FAQ, Tips, Errata and the MAILING LIST ARCHIVES!
http://www.redhat.com/RedHat-FAQ /RedHat-Errata /RedHat-Tips /mailing-lists
To unsubscribe: mail [EMAIL PROTECTED] with
"unsubscribe" as the Subject.
