Solved

Windows and Linux Hardening Guide

Posted on 2011-02-13
6
1,001 Views
Last Modified: 2012-05-11
Anyone know any website that can provide security hardening guide for most of the Windows , Linux, Solaris operating systems?

Hope someone can help! Thanks!
0
Comment
Question by:mawingho
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
6 Comments
 
LVL 3

Accepted Solution

by:
oppofwar earned 125 total points
ID: 34885949
You can use Linux server as gateway and Implement Firewall in it using IPtables
0
 

Author Comment

by:mawingho
ID: 34885956
I need a guide / best practice that tell me what patch need to install, which port need to be closed, password setting, change admin password, what directory should be removed or hiddened...what config need to be set, etc.....

anyone can help? thanks!
0
 
LVL 3

Assisted Solution

by:maxchow
maxchow earned 125 total points
ID: 34886223
In principle,

I use 2 method to protect the Windows and Linux server
1. Prevent all unnecessary access, physical and logical
- Lock up your server, don't allows remote access.  Use ssh with certification authentication control if it is cannot be prevents
- Disable all unnecessary and service running, like ntp, smb httpd etc etc.
- Never expose a  Windows server to the internet without a firewall.
- Use selinux to control access to files. and write programs with checksum or tripwire checking to those webpage and home directories if necessary.
2. Use VMs, control one service in one VM, can control accesses.  keep snapshots so you can recovery anything easier

The you may not need to
0
Technology Partners: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

 
LVL 16

Assisted Solution

by:Joseph Gan
Joseph Gan earned 250 total points
ID: 34891032
0
 
LVL 16

Assisted Solution

by:Joseph Gan
Joseph Gan earned 250 total points
ID: 34891088
0
 

Author Closing Comment

by:mawingho
ID: 34894821
thanks
0

Featured Post

What Is Transaction Monitoring and who needs it?

Synthetic Transaction Monitoring that you need for the day to day, which ensures your business website keeps running optimally, and that there is no downtime to impact your customer experience.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

When it comes to security, close monitoring is a must. According to WhiteHat Security annual report, a substantial number of all web applications are vulnerable always. Monitis offers a new product - fully-featured Website security monitoring and pr…
Email attacks are the most common methods for initiating ransomware and phishing scams. Attackers want you to open an infected attachment or click a malicious link, and unwittingly download malware to your machine. Here are 7 ways you can stay safe.
Sending a Secure fax is easy with eFax Corporate (http://www.enterprise.efax.com). First, just open a new email message. In the To field, type your recipient's fax number @efaxsend.com. You can even send a secure international fax — just include t…
Sending a Secure fax is easy with eFax Corporate (http://www.enterprise.efax.com). First, Just open a new email message.  In the To field, type your recipient's fax number @efaxsend.com. You can even send a secure international fax — just include t…

717 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question