Secure the Node

Follow these procedures when securing a GNW node. These procedures must be performed at installation time. In addition it is wise to periodically review the node configurations by using these procedures as a checklist.

Contents:


Hosts Allow/Deny

We need to start by blocking all access to this machine and then adding only the trusted resources.

As root edit the /etc/hosts.deny file and replace its contents with the following.

Now edit the /etc/hosts.allow file and replace its contents with the following.


Firewall

As root replace the contents of /etc/sysconfig/iptables with the following:

Check to ensure that the firewall is set to run at start up. Run the following command as root.


Login Banner

As root edit the /etc/issue file and add the following content:

Update ssh configuration setting "Banner" to /etc/issue and restart the service:

Secure the Node (last edited 2015-08-20 00:15:55 by Eric)