SUSE Linux Enterprise Server 12 SP5
Deals with the particulars of installing and setting up a secure SUSE Linux Enterprise Server, and additional post-installation processes required to further secure and harden that installation. Supports the administrator with security-related choices and decisions.
Publication Date:
December 11, 2023
- About This Guide
- 1 Common Criteria
- 2 Linux Security and Service Protection Methods
- 2.1 Physical Security
- 2.2 Locking Down the BIOS
- 2.3 Security via the Boot Loaders
- 2.4 Verifying Security Action with
seccheck
- 2.5 Retiring Linux Servers with Sensitive Data
- 2.6 Backups
- 2.7 Disk Partitions
- 2.8 Firewall (iptables)
- 2.9 Security Features in the Kernel
- 2.10 AppArmor
- 2.11 SELinux
- 2.12 FTP,
telnet
, andrlogin
(rsh) - 2.13 Removing Unnecessary Software Packages (RPMs)
- 2.14 Patching Linux Systems
- 2.15 Securing the Network—Open Network Ports Detection
- 2.16
xinetd
Services - Disabling - 2.17 Securing Postfix
- 2.18 File Systems: Securing NFS
- 2.19 Copying Files Using SSH Without Providing Login Prompts
- 2.20 Checking File Permissions and Ownership
- 2.21 Default umask
- 2.22 SUID/SGID Files
- 2.23 World-Writable Files
- 2.24 Orphaned or Unowned Files
- 2.25 Restricting Access to Removable Media
- 2.26 Various Account Checks
- 2.27 Enabling Password Aging
- 2.28 Stronger Password Enforcement
- 2.29 Leveraging an Effective PAM stack
- 2.30 Restricting
root
Logins - 2.31 Setting an Inactivity Timeout for Interactive Shell Sessions
- 2.32 Preventing Accidental Denial of Service
- 2.33 Displaying Login Banners
- 2.34 Miscellaneous
List of Tables
版權所有 © 2006– 2023 SUSE LLC 和貢獻者。保留所有權利。
根據 GNU 自由文件授權 (GNU Free Documentation License) 1.2 版或 1.3 版 (自由選擇),使用者可以複製、散佈與/或修改本文件;「恆常章節」為此著作權聲明與授權。“GNU 自由文件授權”一節中包含 1.2 版授權的一份副本。
如需 SUSE 商標,請參閱 http://www.suse.com/company/legal/。所有其他協力廠商的商標所有權分屬其各自的公司。®、™ 等商標符號表示 SUSE 及其關係企業的商標。星號 (*) 表示協力廠商的商標。
本手冊中所有資訊在編輯時,都已全力注意各項細節。但這不保證百分之百的正確性。因此,SUSE LLC 及其關係企業、作者或譯者都不需對任何錯誤或造成的結果負責。