Windows and Linux Hardening Guide

Posted on 2011-02-13
Medium Priority
Last Modified: 2012-05-11
Anyone know any website that can provide security hardening guide for most of the Windows , Linux, Solaris operating systems?

Hope someone can help! Thanks!
Question by:mawingho

Accepted Solution

oppofwar earned 500 total points
ID: 34885949
You can use Linux server as gateway and Implement Firewall in it using IPtables

Author Comment

ID: 34885956
I need a guide / best practice that tell me what patch need to install, which port need to be closed, password setting, change admin password, what directory should be removed or hiddened...what config need to be set, etc.....

anyone can help? thanks!

Assisted Solution

maxchow earned 500 total points
ID: 34886223
In principle,

I use 2 method to protect the Windows and Linux server
1. Prevent all unnecessary access, physical and logical
- Lock up your server, don't allows remote access.  Use ssh with certification authentication control if it is cannot be prevents
- Disable all unnecessary and service running, like ntp, smb httpd etc etc.
- Never expose a  Windows server to the internet without a firewall.
- Use selinux to control access to files. and write programs with checksum or tripwire checking to those webpage and home directories if necessary.
2. Use VMs, control one service in one VM, can control accesses.  keep snapshots so you can recovery anything easier

The you may not need to
Easily Design & Build Your Next Website

Squarespace’s all-in-one platform gives you everything you need to express yourself creatively online, whether it is with a domain, website, or online store. Get started with your free trial today, and when ready, take 10% off your first purchase with offer code 'EXPERTS'.

LVL 16

Assisted Solution

by:Joseph Gan
Joseph Gan earned 1000 total points
ID: 34891032
LVL 16

Assisted Solution

by:Joseph Gan
Joseph Gan earned 1000 total points
ID: 34891088

Author Closing Comment

ID: 34894821

Featured Post

Free Tool: Port Scanner

Check which ports are open to the outside world. Helps make sure that your firewall rules are working as intended.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

The article explains the process to deploy a Self-Service password reset portal I developed a few years ago. Hopefully, it will prove useful to someone.  Any comments, bug reports etc. are welcome...
You do not need to be a security expert to make the RIGHT security. You just need some 3D guidance, to help lay out an action plan to secure your business operations. It does not happen overnight. You just need to start now and do the first thin…
Email security requires an ever evolving service that stays up to date with counter-evolving threats. The Email Laundry perform Research and Development to ensure their email security service evolves faster than cyber criminals. We apply our Threat…
Sometimes it takes a new vantage point, apart from our everyday security practices, to truly see our Active Directory (AD) vulnerabilities. We get used to implementing the same techniques and checking the same areas for a breach. This pattern can re…

600 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question