Presentation is loading. Please wait.

Presentation is loading. Please wait.

Welcome to all Participants

Published byMerete Jensen Modified over 6 years ago

Similar presentations

Presentation on theme: "Welcome to all Participants"— Presentation transcript:

1 Welcome to all Participants
Workshop on Server Hardening

2 Today Highlights Redhat Linux 7 Installation (Dual Booting)
Server Hardening - Security overview - Vulnerability Assessment - Linux Server Hardening Security Tips - Compliance and Frameworks 

3 Computer security also known as cyber security or IT security, is the protection of computer systems from the theft and damage to their hardware, software or information, as well as from disruption or misdirection of the services they provide.

4 Computer security Confidentiality Integrity Availability

5 Security Controls Physical Technical Administrative
Computer security is often divided into three distinct master categories, commonly referred to as controls: Physical Technical Administrative

6 Physical Controls Closed-circuit surveillance cameras
Motion or thermal alarm systems Security guards Picture IDs Locked and dead-bolted steel doors Biometrics (includes fingerprint, voice, face, iris, handwriting, etc)

7 Technical Controls Encryption Smart cards Network authentication
Access control lists (ACLs) Tips and Tricks

8 Administrative controls
Training and awareness Disaster preparedness and recovery plans Personnel recruitment and separation strategies Personnel registration and accounting

9 Vulnerability Assessment
Assessment and Testing - Outside Looking - Inside Looking

10 Vulnerability Assessment
Tools - Nmap - Nessus - OpenVAS - Nikito - Lynis

11 Linux Server Hardening Security Tips
Encrypt Data Communication scp, ssh, sftp, rsync. SSL for apache etc Avoid Using FTP, Telnet

12 Linux Server Hardening Security Tips
Minimize Software to Minimize Vulnerability Disable Unwanted Services Find Listening Network Ports Delete X Windows

13 Linux Server Hardening Security Tips
One Network Service Per System or VM Instance

14 Linux Server Hardening Security Tips
Keep Linux Kernel and Software Up to Date Selinux Configure Iptables and TCPWrappers Linux Kernel /etc/sysctl.conf Hardening

15 Linux Server Hardening Security Tips
User Accounts and Strong Password Policy Password aging  Locking User Accounts After Login Failures

16 Linux Server Hardening Security Tips
Securing SSH Login Disable remote root login Use of PAM Change default port Port Knocking

17 Linux Server Hardening Security Tips
Separate Disk Partitions Disk Quotas

18 Linux Server Hardening Security Tips
Use A Centralized Authentication Service Kerberos

19 Linux Server Hardening Security Tips
Logging and Auditing Monitor Suspicious Log Messages With Logwatch / Logcheck System Accounting with auditd

20 Linux Server Hardening Security Tips
Install And Use Intrusion Detection System Disable USB/firewire/thunderbolt devices Use fail2ban/denyhost as IDS (Install an Intrusion Detection System)

21 Linux Server Hardening Security Tips
Use A Centralized Authentication Service Kerberos

22 Linux Server Hardening Security Tips
Backup Log Server Physical server security

23 Compliance and Framework

24 Thank You

Download ppt "Welcome to all Participants"

Similar presentations

Computer Security II Lecturer – Lynn Ackler – Office – CSC 222 – Office Hours 9:00 – 10:00 M,W Course – CS 457 – CS 557.

Computer Security II Lecturer – Lynn Ackler – Office – CSC 222 – Office Hours 9:00 – 10:00 M,W Course – CS 457 – CS 557.
1 Chapter 8 Fundamentals of System Security. 2 Objectives In this chapter, you will: Understand the trade-offs among security, performance, and ease of.

1 Chapter 8 Fundamentals of System Security. 2 Objectives In this chapter, you will: Understand the trade-offs among security, performance, and ease of.
1 Defining System Security Policies. 2 Module - Defining System Security Policies ♦ Overview An important aspect of Network management is to protect your.

1 Defining System Security Policies. 2 Module - Defining System Security Policies ♦ Overview An important aspect of Network management is to protect your.
Security+ Guide to Network Security Fundamentals

Security+ Guide to Network Security Fundamentals
Chapter 7 HARDENING SERVERS.

Chapter 7 HARDENING SERVERS.
ITS Offsite Workshop 2002 PolyU IT Security Policy PolyU IT/Computer Systems Security Policy (SSP) By Ken Chung Senior Computing Officer Information Technology.

ITS Offsite Workshop 2002 PolyU IT Security Policy PolyU IT/Computer Systems Security Policy (SSP) By Ken Chung Senior Computing Officer Information Technology.
Potions of Protection Server Security. What does that do again? Familiarity Differing levels of protection –Low, does not exist –Medium, No private data.

Potions of Protection Server Security. What does that do again? Familiarity Differing levels of protection –Low, does not exist –Medium, No private data.
Database Security and Auditing: Protecting Data Integrity and Accessibility Chapter 2 Operating System Security Fundamentals.

Database Security and Auditing: Protecting Data Integrity and Accessibility Chapter 2 Operating System Security Fundamentals.
Microsoft Technology Associate

Microsoft Technology Associate
Lesson 9-Securing a Network. Overview Identifying threats to the network security. Planning a secure network.

Lesson 9-Securing a Network. Overview Identifying threats to the network security. Planning a secure network.
Security Overview. 2 Objectives Understand network security Understand security threat trends and their ramifications Understand the goals of network.

Security Overview. 2 Objectives Understand network security Understand security threat trends and their ramifications Understand the goals of network.
Network Security. Trust Relationships (Trust Zones) High trust (internal) = f c (once you gain access); g p Low trust ( ) = more controls; fewer privileges.

Network Security. Trust Relationships (Trust Zones) High trust (internal) = f c (once you gain access); g p Low trust ( ) = more controls; fewer privileges.
University of Missouri System 1 Security – Defending your Customers from Themselves StateNets Annual Meeting February, 2004.

University of Missouri System 1 Security – Defending your Customers from Themselves StateNets Annual Meeting February, 2004.
Security Measures Using IS to secure data. Security Equipment, Hardware Biometrics –Authentication based on what you are (Biometrics) –Biometrics, human.

Security Measures Using IS to secure data. Security Equipment, Hardware Biometrics –Authentication based on what you are (Biometrics) –Biometrics, human.
Course ILT Security Unit objectives Configure operating system and file system security Install a fingerprint scanner and card reader Manage the human.

Course ILT Security Unit objectives Configure operating system and file system security Install a fingerprint scanner and card reader Manage the human.
E-business Security Dana Vasiloaica Institute of Technology Sligo 22 April 2006.

E-business Security Dana Vasiloaica Institute of Technology Sligo 22 April 2006.
Chapter 8 Hardening Your SQL Server Instance. Hardening  Hardening The process of making your SQL Server Instance more secure  New features Policy based.

Chapter 8 Hardening Your SQL Server Instance. Hardening  Hardening The process of making your SQL Server Instance more secure  New features Policy based.
LINUX Security, Firewalls & Proxies. Course Title Introduction to LINUX Security Models Objectives To understand the concept of system security To understand.

LINUX Security, Firewalls & Proxies. Course Title Introduction to LINUX Security Models Objectives To understand the concept of system security To understand.
© 2007 Cisco Systems, Inc. All rights reserved.Cisco Public 1 Version 4.1 ISP Responsibility Working at a Small-to-Medium Business or ISP – Chapter 8.

© 2007 Cisco Systems, Inc. All rights reserved.Cisco Public 1 Version 4.1 ISP Responsibility Working at a Small-to-Medium Business or ISP – Chapter 8.
Chapter 10: Computer Controls for Organizations and Accounting Information Systems

Chapter 10: Computer Controls for Organizations and Accounting Information Systems

Similar presentations

Ads by Google