/me agrees with David Lang (must be a first...) More to the point of your question: * shutdown unnecessary services * block unnecessary ports * upgrade/update packages * get a CRC fingerprint for various parts of the system (/etc, /bin, etc.) - and periodically check the running system against it. * backup critical parts of the system (see above)
After that it's a matter of change/security management: detecting intrusions, finding the vulnerabilities, restoring to the pre-cracked version, fixing the vulnerability, and making another checkpoint. On Mon, Feb 1, 2010 at 6:44 PM, Joseph Kern <joseph.a.k...@gmail.com> wrote: > > Given that they have to keep their servers and services online; what > would you do in 5 mins to secure a Linux system? > -- Perfection is just a word I use occasionally with mustard. --Atom Powers-- _______________________________________________ Discuss mailing list Discuss@lopsa.org http://lopsa.org/cgi-bin/mailman/listinfo/discuss This list provided by the League of Professional System Administrators http://lopsa.org/
