Hardening Linux server¶
The below writeups were initially based on debian 9 hosts, and then later on ubuntu 18.04 LTS, and on CentOS 8. Everything in these writeups will probably also apply to newer versions. If something does not work, check the documentation for your distro and version for what you are trying to do.
Battening the hatches:
- User account sanity checks
- Remove unnecessary services
- Preventing unauthorised access while respecting privacy
- The CIA triad framework for security
- Title
- Taming permissions, xattrs & the dangers of SUID/SGID
- PKI: The beautiful mess of digital trust (and why nothing works properly)
- From basic monitoring to intrusion detection
- Continuous host monitoring and threat detection
- Incident response plan
- Troubleshooting
Last update:
2025-05-19 17:28