Security Tweaks - List and Options

[Suhaib]

Hello,

I have listed a few Security tweaks on a linux server which are as follows :

- PhpSysinfo
- rootkit Detection - Installation and Configuration
- ZenOptimizer
- IPtables / Firewall Configuration
- Mod_security Installation
- Brute Force Detection Software Installation
- Binary Hardening
- /tmp /var/tmp Directories - Scan and hardening
- PAM Resource Limits
- MySQL Tweaks
- PHP Hardening
- Logrotater - Install
- Host.conf and Sysctl Harden
- Logwatch Installation
- Secure Name Configuration
- Remove non-required Software
- Removal of RBL-related Databases
- Mailman - Monitor
- MRTG - Configuration
- ClamAV - Anti-virue toolkit
- phpSysinfo - Installation
- Libsafe Install
- Apache / MySQL / PHP Installation
- mod_evasive - Install / Configure
- Nobody Check - Install
- Iftop - Install and Configure
- Eaccelerator - Installation
- AIDE - Install - Configure
- Munin Installation
- Snort - Install - Configure
- MyTop - Installation
- Nessus Scanner - Installation
- PRM - Process resource monitor
- SIM - Sys Integrity Monitor
- LES - Linux Environment Security
- SPRI - Sys Priority Config
- LSM - Linux Socket Monitor

You can add more to the list in your next reply.

[Shoaib]

In Linux server attackers tries to target the rc.d file to plant backdoor programs.Do remember to check each ‘rc’ files for programs that you are not familiar of or that have not been added recently.

[AKSIN]

We know about security system, not the security what you are telling about. But I am interested!