OS Hardening

Relating to minimizing a computer's exposure to current and future threats.

OS Hardening Windows

Submitted by Micky on Tue, 05/01/2007 - 18:32
tag(s) :

OS Hardening for Windows 2000 & 2003

Last Updated by asmith 2006.12.04

Windows Pre-OS Hardening Procedures

Submitted by Micky on Tue, 05/01/2007 - 18:32
tag(s) :

Run a Vulnerability scan on the system in question as well as a virus scan using any or all of the following:

OS Hardening Linux

Submitted by Micky on Tue, 05/01/2007 - 18:28
tag(s) :

Secure /tmp and /var/tmp

If they are running cPanel (I usually look for the '/scripts' directory) then run /scripts/securetmp This will remount the '/tmp' and '/var/tmp' as 'noexec'.

Sometimes cPanel has an issue with /tmp permissions. Run the following: 

root# ls -al /

if you see: 

drwxr-xr-x   5 root   root   xxxxx mon xx xx:xx /tmp

You’ll need to chmod the /tmp directory to 1777 in order to set the sticky bit.

Linux Pre-OS Hardening Procedures

Submitted by Micky on Tue, 05/01/2007 - 18:27
tag(s) :

Check to make sure the server is not compromised first. We will NOT harden a compromised server. 

export HISTFILE=/dev/null

You can use the following to usually accomplish this:

Syndicate content