EpochSec Guides
  • ▶️Daily Activity - Best Practices
    • Stop Clicking!
    • Correlating Information
    • Use Public Tools
    • Browsers and Wallets
    • Password Managers
    • Additional Topics
    • Conclusion
  • ▶️Daily Activity - Supporting Tools
    • Virus Total
    • Site Checkers
      • Site Checkers - Example 1
      • Site Checkers - Example 2
    • Domain Lookup
      • Domain Lookup - Examples
    • Community Tools
    • Have I Been Pwned?
    • Google Account Check
    • Abuse IP
    • MX Toolbox
  • ▶️Security Best Practices - Linux
  • ▶️Staying Safe in Crypto
    • Funds on Exchanges
    • Hardware Wallets
    • Enable SIM Lock
    • Wallet Seed Phrases
    • Password Manager
    • Using 2FA
    • Conclusion
  • ▶️General OS Hardening
    • General OS Hardening
      • User Accounts
      • Installs (OS) and Software
      • Hardware
      • VPN
      • Home Network
    • Windows
    • Linux
    • Scanning and Pen Testing
    • Conclusion
  • ▶️Getting Into Cyber Security
    • Basic Notes
    • Study and Learn
    • Training Resources
    • Certifications
    • Job Roles
    • Conclusion
  • ➡️Two Factor Authentication
    • Video
    • Basic Notes
    • Setting up and Using Yubikey 5C
    • Twitter + Yubikey example
  • ▶️Spotting Unsafe Websites
    • Malicious or Safe Website?
    • Security Vendors
    • Website Details and Info
    • Reporting Websites & Malicious Activity
    • Reporting Agencies
    • Additional Reporting and Lookup
    • MX Toolbox
    • Email Header Analyzers
Powered by GitBook
On this page
  1. General OS Hardening

Linux

Below are some specific options to improve security of your system. Some specific Linux notes were described in the general section. Below, I will provide a checklist to follow:

  • SSH

    • Disable root access for SSH. Use a new user account for SSH.

    • Change the default port (22) for SSH to something other than 22.

    • Disable “Password Login Authentication” for SSH.

      • Use a private/public key pair. Create these with the following encryption methods:

        • rsa 4096 (or above)

        • Or use ed25519

  • Enable and configure UFW (Firewall)

    • If using as a server for a specific application, start off with blocking ALL and only allowing what is needed. If using for day to day workstation, this may be harder to achieve. So instead, you can only block what is needed.

  • Use an IDS, such as Snort.

  • Use an IPS, such as Fail2Ban. Great for intrusions and attacks such as DDOS

  • Monitor traffic with tools such as netstat or nmap

    • netstat -tulpn | ss -tulpn | -sT for nmap

  • User SELinux – Some benefits are:

    • RBAC (Role Based Access Control for user accounts

    • Rule based access for ports, processes, files, and directories

PreviousWindowsNextScanning and Pen Testing

Last updated 2 years ago

▶️