Topic: security suggestions

[oldi]

I have played a bit with sme 6.0 for the last months by just hosting some web pages. But i haven't spent much time on the security aspect of it. Now that i feel more confident I want to reinstall everything again but this time build a very secure server. All i want to do is set up a web and file server. I would like some sugestions on how to make it very secure. From what i have read around i need to:

Disable the unnecessary services
Tripwire or Aida
Some kind of Antivirus
Probably don't need any firewall since my server will be behind a router/firewall.
And some kind of log analyzer to check the logs (e.g. awstats)

THis is how far my search has gone. DO i need anything else.

thanks

[Anonymous]

After reading some stuff on the subject, I'm thinking of a moat and a few carefully placed machine gun nests

Seriously, I'm just starting and good security is top of my wish list also.
Here is a how-to I've found but I must admit that 1/2 of it requires that I read other how-tos to figure out what how-tos I need to read just to understand the document.

http://www.tldp.org/HOWTO/Security-HOWTO/index.html
Of course, we could always use the "evil empire's" solution - leave gaping holes and hope nobody finds them

b.t.w. It seems to me that the log-on ids of 'root' and 'admin' are just inviting trouble.  How can we change those login names to something less obvious?  Ideally, I'd like to create log-on's named 'admin' and 'root' that have no privileges just to slow the hackers down.

...
THis is how far my search has gone. DO i need anything else.

thanks

[mbachmann]

You'll probably find 'rkhunter' (rootkit-hunter), 'snort' and 'acid' plus a good backup-solution ('backuppc') and 'sme6admin' useful. Use search on the terms.