modified on 10 November 2016 at 22:10 ••• 17,071 views

ServerSafety

From Maties Ubuntu

(Difference between revisions)
Jump to: navigation, search
m
m
Line 30: Line 30:
 
*https://help.ubuntu.com/lts/serverguide/automatic-updates.html
 
*https://help.ubuntu.com/lts/serverguide/automatic-updates.html
 
;Help Links
 
;Help Links
 +
*https://www.thefanclub.co.za/how-to/how-secure-ubuntu-1604-lts-server-part-1-basics
 
*https://www.maketecheasier.com/hardening-ubuntu-server
 
*https://www.maketecheasier.com/hardening-ubuntu-server
 
*https://www.thefanclub.co.za/how-to/how-secure-ubuntu-1204-lts-server-part-1-basics
 
*https://www.thefanclub.co.za/how-to/how-secure-ubuntu-1204-lts-server-part-1-basics

Revision as of 13:22, 19 April 2016

Back to Security

Ubuntu uses the Debian philosophy of denying services and being most restrictive when a first time install or configuration is done. It is up to the user to open up services or relax restrictions after installation which is the complete opposite of Microsoft systems.

Hardening Ubuntu for server use

Install the following packages:

  • harden
  • harden-tools
  • harden-doc
  • bastille
Automatic Security Updates

Install software:

sudo apt-get install unattended-upgrades

Enable unattended updates

sudo dpkg-reconfigure -plow unattended-upgrades

Configure unattended updates

sudo nano /etc/apt/apt.conf.d/20auto-upgrades

Add the following;

APT::Periodic::Unattended-Upgrade "1";

Then configure the following:

sudo nano /etc/apt/apt.conf.d/50unattended-upgrades

See links below for reference:

Help Links
Penetration Testing and Forensic Analysis