Focus on Linux
Hardening CentOS Jul 03 2008 03:53PM
Florin Iliescu (iliescufm yahoo com) (12 replies)
Re: Hardening CentOS Jul 05 2008 08:46PM
Andraz Sraka (a aufbix org)
RE: Hardening CentOS Jul 04 2008 07:37AM
Nokin Jérôme (jerome nokin trasys be)
Re: Hardening CentOS Jul 03 2008 11:32PM
flying mayo (flyingmayo gmail com) (1 replies)
Re: Hardening CentOS Jul 04 2008 07:02PM
Seth Mattinen (sethm rollernet us)
Re: Hardening CentOS Jul 03 2008 08:14PM
Mario Spinthiras (mspinthiras gmail com)
Re: Hardening CentOS Jul 03 2008 07:51PM
Chase Simms (Csimm pubpress com)
Re: Hardening CentOS Jul 03 2008 05:41PM
Jure Krasovic (jure krasovic lusp com)
Florin Iliescu pravi:
> Helo,
>
> Can anybody help me with some procedures to secure a CentOS server? I am going to use it for receiving files over Internet with SFTP.
>
> Thank you,
>
> Florin
>
>
>
>
>
Hello Florin,

if I were you what I would do is:
1. Close all ports from outside except port 22 with iptables,
2. establish ssh key + user name and password authentication,
3. if you know from which IP's connections are coming then use
tcpwrappers (/etc/hosts.allow + /etc/hosts.deny) to allow sftp
connection from specific ip addresses,
4. Sftp use the same port than ssh. Actually it is subsystem of ssh so
users will be allowed to login to your system (will have shell on your
machine),
5. system should be up to date all the time,
6. IDS/IPS ....

These are just some thinks I would consider.

I hope it helps a little.

Best regards!

Jure

[ reply ]
RE: Hardening CentOS Jul 03 2008 05:18PM
Tony UcedaVelez (tonyuv versprite com)
Re: Hardening CentOS Jul 03 2008 05:10PM
Peter Hinse (loco d0pefish de)
Re: Hardening CentOS Jul 03 2008 04:58PM
aurbain (aurbain interactivebrokers com)
Re: Hardening CentOS Jul 03 2008 04:51PM
Jeronimo Zucco (jczucco ucs br)
Re: Hardening CentOS Jul 03 2008 04:20PM
Mohd Irwan Jamaluddin (mij irwan name)
Re: Hardening CentOS Jul 03 2008 04:19PM
David A. Kennel (dkennel lanl gov) (1 replies)
Re: Hardening CentOS Jun 22 2009 04:45PM
Tony Murphy (tmurphy trustedcs com) (1 replies)
Re: Hardening CentOS Nov 24 2009 04:25PM
Tony Murphy (tmurphy trustedcs com)


 

Privacy Statement
Copyright 2010, SecurityFocus