modified on 10 November 2016 at 22:10 ••• 17,318 views

ServerSafety

From Maties Ubuntu

(Difference between revisions)
Jump to: navigation, search
m
m
Line 27: Line 27:
 
*https://help.ubuntu.com/lts/serverguide/automatic-updates.html
 
*https://help.ubuntu.com/lts/serverguide/automatic-updates.html
 
;Help Links
 
;Help Links
 +
*https://www.maketecheasier.com/hardening-ubuntu-server
 
*https://www.thefanclub.co.za/how-to/how-secure-ubuntu-1204-lts-server-part-1-basics
 
*https://www.thefanclub.co.za/how-to/how-secure-ubuntu-1204-lts-server-part-1-basics
 
* https://help.ubuntu.com/community/StricterDefaults
 
* https://help.ubuntu.com/community/StricterDefaults

Revision as of 12:58, 13 September 2015

Back to Security

Ubuntu uses the Debian philosophy of denying services and being most restrictive when a first time install or configuration is done. It is up to the user to open up services or relax restrictions after installation.

Hardening Ubuntu for server use

Install the following packages:

  • harden
  • harden-tools
  • harden-doc
  • bastille
Automatic Security Updates

Install software:

sudo apt-get install unattended-upgrades

Enable unattended updates

sudo dpkg-reconfigure -plow unattended-upgrades

Configure unattended updates

sudo nano /etc/apt/apt.conf.d/20auto-upgrades

Add the following;

APT::Periodic::Unattended-Upgrade "1";

Then configure the following:

sudo nano /etc/apt/apt.conf.d/50unattended-upgrades

See links below for reference:

Help Links
Penetration Testing and Forensic Analysis