Language Selection

English French German Italian Portuguese Spanish

Six Easy Steps to Make a Super Secure Linux Server

Filed under

Curiously many Linux administrators out there are clueless about properly securing or configuring a server. The following steps can significantly increase the stability and security of any Linux server. These tips are all easy and quick to do as each can be completed in less than fifteen minutes!

1.) Installing latest security updates. Of course, Linux is an amazing OS- but all software has security issues. Enabling the automatic updates installation through a cron script is the most foolproof and easiest way to make sure that your server security isn’t compromised. You have no excuse to not install the most recent security updates- earlier packages are stored in the package archives just in case there is a compatibility or stability issue.

2.) Disabling root login via SSH. Admittedly, we all have been guilty of this occasionally. Let’s just face it, people like being able to easily and quickly log into the servers, and change important settings. However, if you are using password authentication, what is to keep others from logging into your system? Additionally, you shouldnt use password authentication on any Linux servers, to prevent someone else from logging into the server. Instead, activate RSA signed authorization keys. It is safer, since an attacker wont be able to guess and brute-force a login session.

Rest Here

More in Tux Machines

FreeNAS 10 Enters Alpha, Brings Lots of New Technologies, Based on FreeBSD 10.2

FreeNAS' Jordan Hubbard was proud to announce the other day, October 8, the release and immediate availability for download of the first Alpha build of the upcoming FreeNAS open source Network Attached Storage (NAS) solution. Read more

openSUSE Tumbleweed Gets New Major Snapshot, Leap 42.1 RC1 Coming Next Week

On October 9, Douglas DeMaio wrote about the latest major snapshot released for the rolling-release edition of the openSUSE Linux operating system, Tumbleweed, which adds some of the latest software versions. Read more

Amazon’s AWS IoT platform taps three Linux SBCs

Amazon’s new “AWS IoT” cloud IoT platform offers Starter Kits built around Linux-ready SBCs like the BeagleBone Green, DragonBoard 410c, and Intel Edison. Amazon made its first big Internet of Things play by launching an IoT managed cloud platform for aggregating and processing IoT endpoint data, built around its Amazon Web Services (AWS) platform. Available now in beta form, AWS IoT, is being made available in the form of a series of AWS IoT Starter Kits, which bundle popular hacker boards with the AWS IoT Device SDK, and in some cases other hardware such as Grove sensors. Three of the 10 kits runs Linux, including kits for the DragonBoard 410c, BeagleBone Green, and Intel Edison (see farther below). Read more

KDBUS Continues Maturing, But Will We See It For Linux 4.4?

New KDBUS patches continue being published for this in-kernel IPC mechanism based on D-Bus, but it hasn't been communicated yet whether Linux 4.4 is the next target for hoping to mainline this controversial code. Just yesterday was a set of 44 patches in attempting to cleanup the KDBUS code further. There's also been an assortment of other KDBUS patches floating around the kernel mailing list. Read more