1. Hi,

    Building Secure Ubuntu 12.04 Server!?
    I'm trying to get a feedback - I've been figure out how to build a secure ubuntu server 12.04 - only running boinc-client, reachable from the internet.

    Please point me in the right direction.. You don't need to talk me through step by step, just comment my suggestion ;)

    In short:
    Want to build secure ubuntu 12.04 server, only running:
    Ubuntu Server 12.04
    Boinc-client
    Lm-sensor
    sendmail/postfix - protection against spammers???
    shell-script (CPUtemp.sh monitor/shutdown - warning via email - use sendmail or postfix???)

    1a. Running a shell script which monitors CPUtemp. Need a mailprogram to send/smtp alert mails from the CPUtemp shell script. Sendmail? Postfix? Included in Ubuntu Server!?!
    1b. Because of "1a" I need some kind of protection of the mail client???
    2. Need some kind of program to view log-files/server status or how is several log-files usually viewed!?! Any ideas?

    #1 Install and configure Firewall - ufw
    #2 Secure shared memory - fstab
    #3 SSH - Disable root login and change port
    #4 Protect su by limiting access only to admin group
    #5 Harden network with sysctl settings
    #6 Scan logs and ban suspicious hosts - DenyHosts and Fail2Ban
    #7 Intrusion Detection - PSAD
    #8 Check for RootKits - RKHunter and CHKRootKit
    #9 Scan open Ports - Nmap
    #10 Analyse system LOG files - LogWatch
    #11 SELinux - Apparmor
    #12 Audit your system security - Tiger

    #13 Amavisd-new
    #14 SpamAssassin
    #15 Clamav

    #0 Change The Default Shell --> /bin/bash ???

    I made one other post regarding this matter, but no one has answered. Maybe it was too long, I don't know. I hope this short version will be easier to handle ;)
     

Share This Page