Secure Your Linux Server

[regic]

Article on steps you can take to secure your Linux Web server (article's examples are for Red Hat 9).

Among the steps the article recommends taking are changing the root password, disabling suid, limiting the system services users have access to by editing  /etc/securetty, /etc/ftpusers, /etc/xinetd.conf, setting up a firefall with ipchains, and several other steps.

Warning! If you think reading this article will give you all the information you need to be a system administrator, think again. This article covers the basics of security, but it is not a substitute for common sense, nor for the necessary interactive thinking of a competent system administrator.

This is not a fix-all. Hackers and attackers constantly reinvent themselves, and a good system administrator will be versatile and adept, reinventing himself as necessary. I recommend following Linuxdocs.org and CERT to help stay on top of system administration and security issues pertaining to your Linux server.

full article: http://www.linuxdevcenter.com/pub/a/linu...erver.html