Security Recommendations for Server Deployment

Previous Topic Next Topic
 
classic Classic list List threaded Threaded
1 message Options
Reply | Threaded
Open this post in threaded view
|

Security Recommendations for Server Deployment

Muhammad Muntaza-2
Security Recommendations for Server Deployment
In XOR Out Connection

Block return, Pass in
Combating Reverse Telnet using OpenBSD Packet Filter
Force OpenSSH to only allow users with a key to log in
Separate ssh-key per host and user

Allow Access Based on Country with IPdeny
Pass out proto icmp
GnuPG

Store Password Database Locally with pass
Security Patches and OS Updates
Passphares that you can memorize (4 random words)

Configure Email and DNS on Different Host from the website
Use a paid SSL Certificate
Apache or OpenHTTPD in a Chroot Jail
/sbin/nologin is set as the shell




Muhammad Muntaza bin Hatta
Syawal 1441 H, Banjarbaru - Indonesia