On Fri, May 1, 2009 at 11:14 AM, Jim Perrin jperrin@gmail.com wrote:
On Fri, May 1, 2009 at 12:22 PM, Stephen John Smoogen smooge@gmail.com wrote:
On Fri, May 1, 2009 at 10:19 AM, Jason Todd Slack-Moehrle mailinglists@mailnewsrss.com wrote:
Hi All,
What tips does everyone have on hardening a CenOS Server that is running web, e-mail, ssh, ftp, mysql, coldfusion and will be processing payments from www?
NSA hardening guidelines would be a good start. The CIS hardening guidelines would be also good. After that you want to look at specific hardening guidelines for apache
The NSA guide is a very good start, and http://people.redhat.com/sgrubb/files/hardening-rhel5.pdf compliments it rather well. You might also want to have a look at the DoD STIG guidelines, though reading them will make your eyes bleed.
Bah the STIGS are wonderful things... they make my heart sing.