Re: [Nolug] Home server

From: Erik Kamerling <ekamerling_at_snaplen.com>
Date: Wed, 23 Jun 2004 09:50:41 -0500
Message-Id: <200406230950.41528.ekamerling@snaplen.com>

Hi James,

> Could anyone recommend a good "one-stop" tutorial for all of this?

On the security side of things, a truly superb system security tool for
hardening publicly exposed Linux machinery is the Bastille Linux Project. You
mentioned a tutorial and Bastille immediately jumps to mind. The Bastille
scripts are designed to be just as much of a learning tool/security tutorial
for system administrators as a centralized way to implement industry standard
security controls on your system.

Every security ehancement suggested for your system offers a full explanation
before you apply. You can also revert any part of the system security plan
that you implement after the fact, by re-running the bastille scripts if you
discover that your implemented controls are too stringent.

It offers both a Tk and Curses interface for machines with and without
XWindows.

You can find a general overview at http://www.bastille-linux.org, and they
have debian packages.

This is a very good tool to run --after you are done with configuring your
system but --before you interface your machine to the public Internet.

Hope this helps

Erik

  
On Wednesday 23 June 2004 08:04 am, krunk wrote:
> I'm setting up a server at home for a non-profit web page I'm going to
> host. Eventually it should have: Apache, php, ssl, mailing list, mysql,
> forum board, imap (maybe webmail), and, of course, as good a security
> model as can be had for a dual firewall web server.
>
> Could anyone recommend a good "one-stop" tutorial for all of this? A
> book recommendation would be just as welcome (preferably of the
> O'Reilly strain since I have a Safari account and an open purchase
> policy at work).
>
> Debian/unstable, G3 ppc, 2.6.6, and no gui.
>
>
> James
>
> ___________________
> Nolug mailing list
> nolug@nolug.org
___________________
Nolug mailing list
nolug@nolug.org
Received on 06/23/04

This archive was generated by hypermail 2.2.0 : 12/19/08 EST