Debian Server’s basic security configuration

If you using the Debian Web Server, Check these security configurations.

======Changing TELNET banner======

# more /etc/issue.net
!!!!!WARNNING!!!!!! %h                   <== Warnning Message

======Disable ICMP ECHO======

# echo 1 > /proc/sys/net/ipv4/icmp_echo_ignore_all
or
# more /etc/sysctl.conf
#
# /etc/sysctl.conf – Configuration file for setting system variables
# See sysctl.conf (5) for information.
#
#kernel.domainname = example.com
#net/ipv4/icmp_echo_ignore_broadcasts=1
net.ipv4.icmp_echo_ignore_all=1

======Remove identd======

# more /etc/inetd.conf
#ident stream tcp wait identd /usr/sbin/identd identd   <=Insert “#”
# ps -ef | grep inetd   <=process of inetd
# kill -HUP id_num

======Remove portmapper daemon======

# apt-get remove portmapp

저작권

이 저작물은 크리에이티브 커먼즈 코리아 저작자표시-비영리-변경금지 2.0 대한민국 라이선스에 따라 이용하실 수 있습니다.