Comments on: 26 Security Hardening Tips for Modern Linux Servers

By: Ravi Saive

Ravi Saive — Wed, 31 Jul 2024 04:42:44 +0000

@Trevor,

Thank you for your feedback! We appreciate your attention to detail and are glad you found the tips helpful.

By: Trevor Chandler

Trevor Chandler — Tue, 30 Jul 2024 21:33:37 +0000

In the article , the first sentence begins with ‘Everybody says that Linux is secure by default,…‘ Call me petty, but not quite everybody says this! Maybe the majority in the Linux space feels this way, but certainly not everybody. Okay, enough on that.

Very nice, practical tips on securing a Linux system!

By: dragonmouth

dragonmouth — Mon, 22 Jul 2024 19:48:26 +0000

“unexpected accident”
Mast accidents are unexpected. :-)

“3. Minimize Packages to Minimize Vulnerability: ”
From my experience, it is next to impossible to uninstall any packages install by default on *buntu systems without disabling the system. Even the most insignificant package has some system file as a dependency.

Why do you use /etc/cron.allow to DENY users and /etc/cron.deny to ALLOW users?

“8. Disable USB Storage Detection”
Another important reason to disable USB storage is to prevent inadvertent or intentional malware installation.

“19. Display SSH Banner Before Login”
Suppose you have multiple banners to display depending on conditions. How is that handled?

Of course, none of the systemd commands will work on a non-systemd distro such as Devuan.

By: Tobias LinuxServer

Tobias LinuxServer — Mon, 20 Sep 2021 00:01:18 +0000

Thanks for the tips. I just rented a VServer, the first time that a Linux server of mine hangs freely on the Internet. Of course, you have to pay more attention to the security.

By: Qamre alam

Qamre alam — Fri, 23 Apr 2021 11:20:01 +0000

Thanks Team,

It was great and useful.