best security practices on linux

iguimarfernandes
iguimarfernandes used Ask the Experts™
on
Experts, I would like to know the best know securities practicies on linux to protect logs, data base, access to servers...
I can be a little generic, but I don´t know where to start.
I would love to have papers, videos, sites to search on network securities best practices : criptography, server logs, access to data base, and so on.
Thank you all
Comment
Watch Question

Do more with

Expert Office
EXPERT OFFICE® is a registered trademark of EXPERTS EXCHANGE®
View Solutions Only
Commented:
Start with the Center for Internet Security benchmarks for hardening your Linux/Unix servers (Benchmarks available for many flavours):
https://benchmarks.cisecurity.org/downloads/multiform/

The free benchmark documents are very detailed on:
- What the vulnerability is
- How to check it
- How to remediate it

Members can also download scripts to automate most of the remediation
gheist
Top Expert 2015
Commented:
You can use hardening scripts like lynis to check for obvious omissions
In general - root is not used if possible
Each service runs as different unprivilegged user, and other services access it using well defined interfaces e.g. SQL, and not reading mysql datafiles etc
iguimarfernandes

Author

Commented:
Thanks for your recommendations

Do more with

Expert Office
Submit tech questions to Ask the Experts™ at any time to receive solutions, advice, and new ideas from leading industry professionals.

Start 7-Day Free Trial