2010/9/18 Roland RoLaNd <r_o_l_a_n_d at hotmail.com>: > Dear all, > > i Just finished setting up an apache service on a centos 5.2 VM machine. > > i need to secure this machine as i'm soon to be setting a public IP over it > where i'd be opening up the following services: > > > 1. http > 2. https > 3. ssh > > > Things i've done so far: > > 1. stopped root ssh access in sshd.conf > 2. tried configuring PAM so i get a more secure ssh passwords (dictionary > wise) as well as tried setting up a 2 times authentication failure for the > account to be disabled for 12 hours (i couldnl't succeed in setting this up) > 3. disabled port forwarding (to deny outsiders to tunnel through the server > inside my network) couldn't succeed with this either. try reading CIS RHEL 1.2 guide. -- Eero