Difference between revisions of "Security: Basic OS Security"
Jump to navigation
Jump to search
Onnowpurbo (talk | contribs) |
Onnowpurbo (talk | contribs) |
||
| Line 53: | Line 53: | ||
* Enable / Disable SMB | * Enable / Disable SMB | ||
| + | |||
| + | /etc/init.d/smbd stop | ||
| + | iptables block | ||
==Memory== | ==Memory== | ||
Revision as of 10:54, 11 May 2017
Disable Services
- Remote Desktop Disable
- check active port
nmap -sT -O localhost netstat -tulpn netstat -ntlupa
- check daemon
chkconfig --list | grep '3:on' service serviceName stop chkconfig serviceName off
Files Security
- File Permission
chmod
- File Owner
chown
- File Encryption
- Harddisk Partition
df -h make sure separate partition
- Find World Writeable files
find / -xdev -type d \( -perm -0002 -a ! -perm -1000 \) -print
- Find Noowner files
find / -xdev \( -nouser -o -nogroup \) -print
File Transfer
- Disable FTP
/etc/init.d/ftp stop iptables block
- Biasakan pakai SCP
scp
Sharing Files
- Enable / Disable SMB
/etc/init.d/smbd stop iptables block