Gentoo Forums
Gentoo Forums
Gentoo Forums
Quick Search: in

  FAQ | Search | Memberlist | Usergroups | Statistics | Profile | Log in to check your private messages | Log in | Register

Converted my Server to Gentoo! Server Security
 View unanswered posts
View posts from last 24 hours

 
Reply to topic    Gentoo Forums Forum Index Networking & Security
View previous topic :: View next topic  
Author Message
flipnode
Apprentice
Apprentice


Joined: 03 Oct 2004
Posts: 172
Location: USA
PostPosted: Thu Mar 10, 2005 8:41 pm    Post subject: Converted my Server to Gentoo! Server Security Reply with quote
I have officially converted my FreeBSD system over to gentoo. I think this will be a good thing. System maintence is easier. Well, see how stable this will be. Anyone have any things I should do to make my gentoo system more secure? Also, if I have a hardware firewall... Do I need to run one on the server? It will be a webserver, sshd, ProFTP ,no telnet, no email server, no dhcp, no dns. I might hook samba up to it though.

thanks guys
_________________
I think Gentoo is great!
Back to top
View user's profile Send private message
hds
Advocate
Advocate


Joined: 21 Aug 2004
Posts: 2629
Location: Sprockhoevel [GER]
PostPosted: Thu Mar 10, 2005 8:45 pm    Post subject: Re: Converted my Server to Gentoo! Server Security Reply with quote
flipnode wrote:
Also, if I have a hardware firewall... Do I need to run one on the server?

no.
Back to top
View user's profile Send private message
flipnode
Apprentice
Apprentice


Joined: 03 Oct 2004
Posts: 172
Location: USA
PostPosted: Fri Mar 11, 2005 9:22 am    Post subject: Security Tip # 1 Reply with quote
Okay, seeing how no one knows anything about security. I have a little basic security tip I found.

http://www.linuxplanet.com/linuxplanet/tips/1151/1/

more tips to come!:P
_________________
I think Gentoo is great!
Back to top
View user's profile Send private message
Nard`
Apprentice
Apprentice


Joined: 23 Jan 2005
Posts: 250
PostPosted: Fri Mar 11, 2005 9:29 am    Post subject: Reply with quote
Some systems don't use inetd :P

You might want to investigate a replace for ProFTP, infact a replacement for FTP! maybye sftp? that depends what uses you have for it of course...

http://www.gentoo.org/doc/en/gentoo-security.xml is worth a read. Using public key authentication for sshd is a good thing.

If your reallly paranoid running webserver in a chroot or even uml is an option. reguarly updating is a good idea and you might want to use glsa-check, but that *IS* expiremental.

Securing gentoo is like securing most other *nix systems really. Audit SUID files, remove what you don't need, run anything possible as non-root, log, firewall, etc :D
_________________
Programming is the process of putting bugs in.
Debugging is the process of attempting to take bugs out, doing an ugly hack, hitting your computer, then claiming insurance.
Back to top
View user's profile Send private message
flipnode
Apprentice
Apprentice


Joined: 03 Oct 2004
Posts: 172
Location: USA
PostPosted: Sun Mar 13, 2005 9:41 am    Post subject: Reply with quote
Thanks for the info ..:roll: :wink:
_________________
I think Gentoo is great!
Back to top
View user's profile Send private message
Display posts from previous:   
Reply to topic    Gentoo Forums Forum Index Networking & Security All times are GMT
Page 1 of 1

 
Jump to:  
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum



 Links: forums.gentoo.org | www.gentoo.org | bugs.gentoo.org | wiki.gentoo.org | forum-mods@gentoo.org

Copyright 2001-2025 Gentoo Foundation, Inc. Designed by Kyle Manna © 2003; Style derived from original subSilver theme. | Hosting by Gossamer Threads Inc. © | Powered by phpBB 2.0.23-gentoo-p11 © 2001, 2002 phpBB Group
Privacy Policy