On May 1, 2009, at 12:22 PM, Stephen John Smoogen <smooge at gmail.com> wrote: > On Fri, May 1, 2009 at 10:19 AM, Jason Todd Slack-Moehrle > <mailinglists at mailnewsrss.com> wrote: >> Hi All, >> >> What tips does everyone have on hardening a CenOS Server that is >> running web, e-mail, ssh, ftp, mysql, coldfusion and will be >> processing payments from www? > > NSA hardening guidelines would be a good start. The CIS hardening > guidelines would be also good. After that you want to look at specific > hardening guidelines for apache Also using Xen to build out a CentOS guest PV host for the separate functions while hardening the main dom0 host to the teeth would allow you to zone the risks between the virtual hosts. -Ross