• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 761
  • Last Modified:

hardening DMZ systems

Hi All,

we have to created RHEL6 VM in DMZ to serve as a blog server. Is there any website which shows how to harden DMZ linux systems. I have couple of questions on which I want suggestions

1. Patching of OS - whether I should patch it directly from internet using yum or we have internal satellite server to which I shud point this DMZ server to get patched ? any idea which ports are required to be opened if patching from rhn satellite server.

2. rpcbind and rpc.statd services are running on this server and I want to stop it as I am not using any nfs services here. So, will it create problems for any other services running..like..ssh or https etc.

3. Is there any link wherein there is a checklists for verifying the hardening document for linux dmz servers.

We have all the network restrictions in place for this..fyi...

Thanks
virgo
0
virgo0880
Asked:
virgo0880
  • 5
2 Solutions
 
virgo0880Author Commented:
Thanks, I will look at the links.

virgo
0
 
virgo0880Author Commented:
I used benchmark document from CIS to harden the apache configuration as well as DMZ systems.
www.cisecurity.org
0
A Cyber Security RX to Protect Your Organization

Join us on December 13th for a webinar to learn how medical providers can defend against malware with a cyber security "Rx" that supports a healthy technology adoption plan for every healthcare organization.

 
virgo0880Author Commented:
I've requested that this question be closed as follows:

Accepted answer: 200 points for karnapune's comment http:/Q_27403366.html#36990666
Assisted answer: 0 points for virgo0880's comment http:/Q_27403366.html#37146986

for the following reason:

used CIS document for hardening the system which I searched on my own.
0
 
virgo0880Author Commented:
I want to give myself 300 points instead of 0 points. kindly change the same.
0
 
virgo0880Author Commented:
Ok, thats fine.

thanks
0

Featured Post

What Security Threats Are We Predicting for 2018?

Cryptocurrency, IoT botnets, MFA, and more! Hackers are already planning their next big attacks for 2018. Learn what you might face, and how to defend against it with our 2018 security predictions.

  • 5
Tackle projects and never again get stuck behind a technical roadblock.
Join Now