Editing Linux/RHEL
From Bibliotheca Anonoma
Warning: You are not logged in. Your IP address will be publicly visible if you make any edits. If you log in or create an account, your edits will be attributed to your username, along with other benefits.
The edit can be undone. Please check the comparison below to verify that this is what you want to do, and then publish the changes below to finish undoing the edit.
Latest revision | Your text | ||
Line 28: | Line 28: | ||
* [[SELinux]] - Mandatory Access Control, to stop exploits by preventing applications from exhibiting unauthorized behavior, even if they have root access. | * [[SELinux]] - Mandatory Access Control, to stop exploits by preventing applications from exhibiting unauthorized behavior, even if they have root access. | ||
** | ** If you're on OpenVZ and cannot use SELinux, an AppArmor compatible system such as Debian/Ubuntu/OpenSUSE is probably a better idea. But if you need CentOS anyway, consider setting up SMACK as an alternative, a MAC system integrated into the Linux kernel. | ||
* [[Fail2Ban]] - Looks out for malicious or excessive SSH login attempts and then bans them. | * [[Fail2Ban]] - Looks out for malicious or excessive SSH login attempts and then bans them. | ||
* Smart - Check the health of your drives and notify the admin by email or whatever if they are bad. | * Smart - Check the health of your drives and notify the admin by email or whatever if they are bad. |