Slashdot Mirror

← Back to Stories (view on slashdot.org)

Hardening Linux

Posted by CmdrTaco on from the you-know-you-should dept.

davidmwilliams writes "Out of the box, many Linux systems are insecure with open ports and unpatched vulnerabilities. Read about the essential steps to secure your server as well as how to solve them manually and via automated tools like Bastille."

10 of 204 comments (clear)

  1. FP by Anonymous Coward · · Score: 4, Funny

    yes but does it run my favorite rootkit?

    1. Re:FP by Anonymous Coward · · Score: 1, Funny

      Has anyone got the rootkit to work under Wine?

      I'm sick of Linux users being left out. I demand that companies like Sony & Microsoft release bad software for Linux too.

  2. I'm not sure what this is doing on /. by Silver+Sloth · · Score: 1, Funny

    It's a pretty reasonable 'how to' of a basic sort but I would expect most of the /. crowd to be well bwond this level of competance.

    --
    init 11 - for when you need that edge.
    1. Re:I'm not sure what this is doing on /. by Anonymous Coward · · Score: 1, Funny

      "It's a pretty reasonable 'how to' of a basic sort but I would expect most of the /. crowd to be well bwond this level of competance" - by Silver Sloth (770927) on Sunday August 12, @10:33AM (#20202797)

      Apparently not!

      I say this, because I have challenged the *NIX crew here, 26 times now to be exact, here in these url's, to try the multiplatform benchmark of online security (by the CENTER FOR INTERNET SECURITY, noted by SANS + COMPUTERWORLD, no less, as legit/good etc.):

      http://it.slashdot.org/comments.pl?sid=240571&cid= 19630923
      http://slashdot.org/comments.pl?sid=240283&cid=196 31141
      http://linux.slashdot.org/comments.pl?sid=240501&c id=19630965
      http://it.slashdot.org/comments.pl?sid=241957&cid= 19662703
      http://it.slashdot.org/comments.pl?sid=241913&cid= 19662485
      http://bsd.slashdot.org/comments.pl?sid=238993&cid =19578849
      http://it.slashdot.org/comments.pl?sid=243071&cid= 19690705
      http://it.slashdot.org/comments.pl?sid=243071&cid= 19691091
      http://slashdot.org/comments.pl?sid=240283&cid=196 22485
      http://it.slashdot.org/comments.pl?sid=245695&cid= 19761821
      http://it.slashdot.org/comments.pl?sid=246115&cid= 19774211
      http://linux.slashdot.org/comments.pl?sid=246583&c id=19779437
      http://linux.slashdot.org/comments.pl?sid=252367&c id=19946243
      http://slashdot.org/comments.pl?sid=254685&cid=199 83339
      http://bsd.slashdot.org/comments.pl?sid=255743&cid =19996191
      http://bsd.slashdot.org/comments.pl?sid=255743&thr eshold=-1&commentsort=0&mode=thread&cid=19997047
      http://it.slashdot.org/comments.pl?sid=260975&thre shold=-1&commentsort=0&mode=thread&pid=20109099#20 114035
      http://it.slashdot.org/comments.pl?sid=260975&cid= 20109707
      http://linux.slashdot.org/comments.pl?sid=261525&t hreshold=-1&commentsort=0&mode=thread&cid=20138729
      http://slashdot.org/comments.pl?sid=264303

  3. In Soviet Russia by Anonymous Coward · · Score: 2, Funny

    Linux hardens You

  4. Re:How To in summary... by tomhudson · · Score: 5, Funny

    The summary is ... strange.

    "... many Linux systems are insecure with open ports" ... "...how to secure your server ..."

    Remember all those internet ads about "YOUR COMPUTER HAS OPEN PORTS !!!"

    Its a computer connected to "Teh Intarweb" - its supposed to have open ports.

    Next we'll read another story about how some "1337 hacker hacked into another person's machine" at IP address 127.0.0.1, erased all their files, and somehow, the "other person" was able to hack their machine and do the same thing ...

    Followed by a nostalgiac look at "Punch-the-monkey" ads.

  5. Since the submitter is also the author... by kwabbles · · Score: 4, Funny

    Can you tell us the story about how you came to write this article?

    Here's how I'm picturing it:

    (editor) Mr. Williams, we need a techie article on Linux.
    (mr. williams) Okay... I haven't touched linux since I played around with my RedHat 7.2 box 3 years ago.
    (editor) Do you still have it?
    (mr. williams) Yes, what would you like me to write about it?
    (editor) Write something up on securing its "holes and vulnerabilities", and we'll sensationalize it a bit by making it look like Linux is insecure out of the box.
    (mr. williams) I don't know how to do that.
    (editor) Find something on google. Try it on your RedHat machine.
    (mr. williams) I'm going to look really stupid.
    (editor) You're a journalist.

    --
    Just disrupt the deflector shield with a tachyon burst.
  6. Re:Hardened? Hardly. by Anonymous Coward · · Score: 1, Funny

    what happens if a penetration is successful?

    Pregnancy, in most cases. But in your case, it's probably just a gutteral moan as Inmate 266497 mounts you from behind.

  7. Re:Huh? by drspliff · · Score: 3, Funny

    and "netstat -putin" secretly terminates all applications and pretends there's no open ports?

  8. Hardening Linux by Santana · · Score: 4, Funny
    1. Insert OpenBSD CD
    2. Reboot
    3. Follow the instructions on screen
    --
    The best way to predict the future is to invent it