Skunkworks security audit and lockdown
Reported by Kenrick Turner | June 1st, 2009 @ 12:29 AM | in Dev Server Setup
Final task of Dev Server Setup.
Only when #21, #24, #23, #19, and #26 are complete.
Once everything's installed and configured, check the configuration of the system to ensure that we're running everything reasonably safely e.g. SSH config, webserver in chroot jail, PHP running as appropriate user etc.
Comments and changes to this ticket
-
Kenrick Turner June 7th, 2009 @ 10:45 PM
- Assigned user set to “Kenrick Turner”
-
Kenrick Turner June 14th, 2009 @ 10:41 PM
- State changed from “new” to “open”
-
Kenrick Turner June 15th, 2009 @ 02:00 AM
- State changed from “open” to “resolved”
Installed:
- Tripwire - maintains a database of checksums for critical system files
- Fail2Ban - monitors daemons for failed logins
and uses
iptablesto implement appropriate bans - Chkrootkit - detects common locations and patterns of rootkits
I've also set up daily cronjobs for
tripwireandchkrootkitthat send an email to my address with reports.NB: If you make any systemwide changes, you must regenerate the tripwire database with
sudo tripwire --check -Iotherwise you'll cause a whole lot of violations appear in the next server report -
-
Please Sign in or create a free account to add a new ticket.
With your very own profile, you can contribute to projects, track your activity, watch tickets, receive and update tickets through your email and much more.
Create new ticket
Create your profile
Help contribute to this project by taking a few moments to create your personal profile. Create your profile ยป
A basic HIV Electronic Medical Record (EMR) system using CakePHP.
Kenrick Turner