Tips and Tricks : how to Securing linux server – part 1 -

Posted by getuxcom | Posted in Tips and tricks | Posted on 29-05-2010

0

  • Give a BIOS password on the server, of course we do not want to subject the server hack with most simple way, namely through the boot disk cdrom / floppy. (Actually, it could also remove cdrom or floppy drive)
  • Configuring the minimum password length that is used for the user. To be more difficult to guess password. in the / etc / login.defs, remove comment mark on the line PASS_MIN_LEN and then provide a minimum number of character you want to use, example:

    root@getuxcom: ~ # vi /etc/login.defs
    PASS_MIN_LEN = 10 (value added)

  • Should never login as root if not actually in a state of forced, and never leave the computer without logging out. logout can be done by typing the command exit or [ctrl + d]
  • Setting the login timeout for the root account. This will be very useful when administrators forget to logout or leave the computer for too long. edit the file /etc/profile, then add the line TMOUT. Example:
    root@getuxcom: ~ # vi /etc/profile
    TMOUT = 7200 (line added)

Continue Reading