Latest Posts:
ServerPronto University
Dedicated Server Security

Tips to Improve Your Linux Server´s Security

By
Pinterest

Bless Linux and bless the people that think this article is about a member of Peanuts. Though, where Linus van Pelt has a security blanket, you have to provide your own blanket when dealing with a Linux server. Here are seven brief security tips.

1. Use SELinux

This is the Security-Enhanced Linux and it is a compulsory access control security mechanism. When you disable SELinux, you remove a further security system for your server (which is bad). Set your server to “Enforcing” and ignore the programs and websites that tell you to set it to “Permissive” or “Disabled.” There is a ‘sestatus‘ command you can use to check the status of your SELinux.

2. You should use SSH

This is Secure Shell, which is a protocol that is going to use encryption technology when communicating with the server. You really shouldn’t log directly as root unless you have to. Maybe you should disable root login.

3. Disk partitions help obtain higher data security

You can separate and group information in the same way you separate sauces at a buffet. If someone drips salad dressing into the shrimp cocktail then only the shrimp cocktail needs to be changed and not the relish, mayonnaise, etc.

4. Keep your system updated

This is one of the most obvious security notions, and it isn’t as if people do not know, they just put it off. It’s inconvenient and auto-update programs are never 100% reliable. Maybe you should set up a quarterly update session that reminds you to tinker with your server and update it where any auto-updates have failed.

5. Packages cause vulnerabilities

Have you ever seen those articles that tell you not to download apps for your phone if you are not going to use them or only use them once? The same may be true for server security. You should find and remove unwanted services in order to minimize the amount of vulnerability on your server.

6. View your listening network ports

You can use the ‘netstat‘ networking command and see all the open ports and all the associated programs, and you can use ‘chkconfig‘ to disable all the unwanted network services from your Linux server.

7. Physical security is important

Restricting physical access to the server with something as simple as a password is going to help quite a bit. Supervising your own servers and checking who visits, who accesses it and why is important too.

 

Photo cred: Flickr / muehlinghaus

Author

Related Posts

Comments are closed.