[CentOS] securing centos 5.2 for public usage
eero.volotinen at iki.fi
Sat Sep 18 15:17:42 EDT 2010
2010/9/18 Roland RoLaNd <r_o_l_a_n_d at hotmail.com>:
> Dear all,
> i Just finished setting up an apache service on a centos 5.2 VM machine.
> i need to secure this machine as i'm soon to be setting a public IP over it
> where i'd be opening up the following services:
> 1. http
> 2. https
> 3. ssh
> Things i've done so far:
> 1. stopped root ssh access in sshd.conf
> 2. tried configuring PAM so i get a more secure ssh passwords (dictionary
> wise) as well as tried setting up a 2 times authentication failure for the
> account to be disabled for 12 hours (i couldnl't succeed in setting this up)
> 3. disabled port forwarding (to deny outsiders to tunnel through the server
> inside my network) couldn't succeed with this either.
try reading CIS RHEL 1.2 guide.
More information about the CentOS