Security: Basic OS Security

From OnnoWiki

Revision as of 05:31, 12 May 2017 by Onnowpurbo (talk | contribs) (→‎Files Security)

(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)

Jump to navigation Jump to search

Disable Services

Remote Desktop Disable
check active port

nmap -sT -O localhost
netstat -tulpn
netstat -ntlupa

check daemon

chkconfig --list | grep '3:on'
service serviceName stop
chkconfig serviceName off

Files Security

File Permission

chmod

File Owner

chown

File Encryption

Harddisk Partition

df -h   make sure separate partition

Find World Writeable files

find / -xdev -type d \( -perm -0002 -a ! -perm -1000 \) -print

Find Noowner files

find / -xdev \( -nouser -o -nogroup \) -print

File Transfer

Disable FTP

/etc/init.d/ftp stop
iptables block

Biasakan pakai SCP

scp

Sharing Files

Enable / Disable SMB

/etc/init.d/smbd stop
iptables block

Memory

Retrieved from "https://onnocenter.or.id/wiki/index.php?title=Security:_Basic_OS_Security&oldid=47903"