techlists at comcast.net wrote: > CI Security has some good hardening guidelines for Linux based servers. Any public facing server should be hardened before deploying it online. > > www.cisecurity.org > also, the US NSA has some excellent guidelines, http://www.nsa.gov/snac/downloads_redhat.cfm?MenuID=scg10.3.1.1 these are specific to RHEL 5, hence directly applicable to CentOS 5...