[CentOS] Hardening CentOS by removing "hacker" tools

Filipe Brandenburger filbranden at gmail.com
Fri Jun 6 23:03:50 UTC 2008


Hi,

My boss asked me to harden a CentOS box by removing "hacker" tools,
such as nmap, tcpdump, nc (netcat), telnet, etc.

I would like to know which list of packages would you remove from a
base install. I would appreciate if someone could point me to a
"standard" way of doing this. I know there are procedures for
hardening a machine (I remember reading about Bastille Linux) but I
don't know how effective they are and if they include the removal of
such tools in their procedures.

Any advice would be very appreciated!

Thanks,
Filipe



More information about the CentOS mailing list