1. Do not allow direct root/administrator login 2. Make sure passwords are secure and changed regularly (by force if necessary) 3. Use a network firewall, such as APF 4. Use an application firewall, such as ModSecurity 5. Chroot all non-root users to keep them out of system directories 6. Use …
July, 2010
April, 2010
-
6 April
Secure user accounts with Jailkit
No, it is not something to help you break out of jail. Jailkit is a suite of free and open source software that limits user accounts to a limited portion of the filesystem, utilizing a tool called chroot. It can also be used to limit users to specific commands or …
December, 2009
-
11 December
Keep SSH users in their home directories
Since 2008, OpenSSH now has a feature that allows Linux system administrators to keep web hosting clients and other users out of system directories like /etc /bin /var, and others. In the past, admins had to rely on other packages, such as rssh. The process is called chroot, which essentially …