Security: Basic OS Security: Difference between revisions

Latest revision as of 21:41, 12 June 2017

nmap -sT -O localhost
netstat -tulpn
netstat -ntlupa

apt-get install sysv-rc-conf
sysv-rc-conf --list | grep '3:on'

service serviceName stop
sysv-rc-conf serviceName off

Alternatif perintah yang menarik

sysv-rc-conf apache2 on
sysv-rc-conf --list apache2

Alternatif perintah lain

update-rc.d <service> defaults
update-rc.d <service> start 20 3 4 5
update-rc.d -f <service> remove

chmod

chown

df -h   make sure separate partition

find / -xdev -type d \( -perm -0002 -a ! -perm -1000 \) -print

find / -xdev \( -nouser -o -nogroup \) -print

/etc/init.d/ftp stop
iptables block

scp

/etc/init.d/smbd stop
iptables block

User Account dan Kebijakan Password Kuat

@@ Line 8: / Line 8: @@
   netstat -ntlupa
-* check daemon
+* check daemon, di Ubuntu, bisa menggunakan
+ apt-get install sysv-rc-conf
+ sysv-rc-conf --list | grep '3:on'
- chkconfig --list | grep '3:on'
   service serviceName stop
-  chkconfig serviceName off
+  sysv-rc-conf serviceName off
+Alternatif perintah yang menarik
+ sysv-rc-conf apache2 on
+ sysv-rc-conf --list apache2
+Alternatif perintah lain
+ update-rc.d <service> defaults
+ update-rc.d <service> start 20 3 4 5
+ update-rc.d -f <service> remove
 ==Files Security==
@@ Line 18: / Line 31: @@
 * File Permission
-  chmod
+  [[chmod]]
 * File Owner
-  chown
+  [[chown]]
 * File Encryption
@@ Line 56: / Line 69: @@
   /etc/init.d/smbd stop
   iptables block
+==Password==
+User Account dan Kebijakan Password Kuat
+* Umur Password
+* Paksa Ubah Password
+* Pembatasan Penggunaan Password Lama
+* Kunci Account User setelah beberapa kali gagal Login
+* Verifikasi tidak ada Account dengan password kosong?
+* Pastikan tidak ada Account Non-Root yang mempunyai UID 0
+Baca2 [[20 Linux Server Hardening Security Tips]]
 ==Memory==