Difference between revisions of "Security: Basic OS Security"

From OnnoWiki
Jump to navigation Jump to search
Line 18: Line 18:
 
* File Permission
 
* File Permission
  
  chmod
+
  [[chmod]]
  
 
* File Owner
 
* File Owner

Revision as of 05:20, 12 May 2017

Disable Services

  • Remote Desktop Disable
  • check active port
nmap -sT -O localhost
netstat -tulpn
netstat -ntlupa
  • check daemon
chkconfig --list | grep '3:on'
service serviceName stop
chkconfig serviceName off

Files Security

  • File Permission
chmod
  • File Owner
chown
  • File Encryption


  • Harddisk Partition
df -h   make sure separate partition
  • Find World Writeable files
find / -xdev -type d \( -perm -0002 -a ! -perm -1000 \) -print
  • Find Noowner files
find / -xdev \( -nouser -o -nogroup \) -print

File Transfer

  • Disable FTP
/etc/init.d/ftp stop
iptables block
  • Biasakan pakai SCP
scp

Sharing Files

  • Enable / Disable SMB
/etc/init.d/smbd stop
iptables block

Memory

Retrieved from "https://onnocenter.or.id/wiki/index.php?title=Security:_Basic_OS_Security&oldid=47898"