SUSE Linux Enterprise Server 12 SP5
Deals with the particulars of installing and setting up a secure SUSE Linux Enterprise Server, and additional post-installation processes required to further secure and harden that installation. Supports the administrator with security-related choices and decisions.
Publication Date:
December 12, 2024
- About This Guide
- 1 Common Criteria
- 2 Linux Security and Service Protection Methods
- 2.1 Physical Security
- 2.2 Locking Down the BIOS
- 2.3 Security via the Boot Loaders
- 2.4 Verifying Security Action with
seccheck - 2.5 Retiring Linux Servers with Sensitive Data
- 2.6 Backups
- 2.7 Disk Partitions
- 2.8 Firewall (iptables)
- 2.9 Security Features in the Kernel
- 2.10 AppArmor
- 2.11 SELinux
- 2.12 FTP,
telnet, andrlogin(rsh) - 2.13 Removing Unnecessary Software Packages (RPMs)
- 2.14 Patching Linux Systems
- 2.15 Securing the Network—Open Network Ports Detection
- 2.16
xinetdServices - Disabling - 2.17 Securing Postfix
- 2.18 File Systems: Securing NFS
- 2.19 Copying Files Using SSH Without Providing Login Prompts
- 2.20 Checking File Permissions and Ownership
- 2.21 Default umask
- 2.22 SUID/SGID Files
- 2.23 World-Writable Files
- 2.24 Orphaned or Unowned Files
- 2.25 Restricting Access to Removable Media
- 2.26 Various Account Checks
- 2.27 Enabling Password Aging
- 2.28 Stronger Password Enforcement
- 2.29 Leveraging an Effective PAM stack
- 2.30 Restricting
rootLogins - 2.31 Setting an Inactivity Timeout for Interactive Shell Sessions
- 2.32 Preventing Accidental Denial of Service
- 2.33 Displaying Login Banners
- 2.34 Miscellaneous
List of Tables
版权所有 © 2006– 2024 SUSE LLC 和贡献者。保留所有权利。
根据 GNU 自由文档许可证 (GNU Free Documentation License) 版本 1.2 或(根据您的选择)版本 1.3 中的条款,在此授予您复制、分发和/或修改本文档的许可权限;本版权声明和许可证附带不可变部分。许可证版本 1.2 的副本包含在题为“GNU 自由文档许可证”的部分。
有关 SUSE 商标,请参见 http://www.suse.com/company/legal/。所有其它第三方商标是其各自所有者的财产。商标符号(®、™ 等)代表 SUSE 及其附属公司的商标。星号 (*) 代表第三方商标。
本指南力求涵盖所有详细信息。但这并不确保本指南准确无误。SUSE LLC 及其附属公司、作者和译者对于可能出现的错误或由此造成的后果皆不承担责任。