[CentOS] Hardening

Fri May 1 22:44:19 UTC 2009
Ross Walker <rswwalker at gmail.com>

On May 1, 2009, at 12:22 PM, Stephen John Smoogen <smooge at gmail.com>  
wrote:

> On Fri, May 1, 2009 at 10:19 AM, Jason Todd Slack-Moehrle
> <mailinglists at mailnewsrss.com> wrote:
>> Hi All,
>>
>> What tips does everyone have on hardening a CenOS Server that is
>> running web, e-mail, ssh, ftp, mysql, coldfusion and will be
>> processing payments from www?
>
> NSA hardening guidelines would be a good start. The CIS hardening
> guidelines would be also good. After that you want to look at specific
> hardening guidelines for apache

Also using Xen to build out a CentOS guest PV host for the separate  
functions while hardening the main dom0 host to the teeth would allow  
you to zone the risks between the virtual hosts.

-Ross