Hardening Ubuntu Hardy Heron 8.04 OS

Joe McDonagh joseph.e.mcdonagh at gmail.com
Wed Aug 11 00:20:41 UTC 2010

On 08/10/2010 04:06 AM, Kaushal Shriyan wrote:
> Hi
> Please refer me to a document or wiki to Harden Ubuntu Hardy Heron OS 8.04
> Thanks
> Kaushal
AFAIK there isn't one specifically for Ubuntu; it's just kind of 'apply
best practices' type thing i.e:

* lock down logins (ssh, interactive, password policy)
* audit passwd files through scripts
* don't run non-essential services
* remove unnecessary packages like samba
* so on and so forth ad infinitum

Maybe there is a generic Linux hardening guide out there you can follow,
I'm relying on some years of experience to secure my boxes.
It's not like RHEL where government agencies use it and push for
security of the highest levels, thereby increasing the amount of
hardening documentation available.

I'd say to start off the best thing you can do is install bastille,
chkrootkit, OSSEC, and snort. All of those are pretty out of the box
ready to use, save snort. For more advanced security it would be good
for you to learn PAM and AppArmor.

Joe McDonagh
AIM: YoosingYoonickz
IRC: joe-mac on freenode
L'ennui est contre-révolutionnaire

More information about the ubuntu-server mailing list