[CentOS] Hardening CentOS by removing "hacker" tools

Filipe Brandenburger filbranden at gmail.com
Fri Jun 6 23:03:50 UTC 2008


My boss asked me to harden a CentOS box by removing "hacker" tools,
such as nmap, tcpdump, nc (netcat), telnet, etc.

I would like to know which list of packages would you remove from a
base install. I would appreciate if someone could point me to a
"standard" way of doing this. I know there are procedures for
hardening a machine (I remember reading about Bastille Linux) but I
don't know how effective they are and if they include the removal of
such tools in their procedures.

Any advice would be very appreciated!


More information about the CentOS mailing list