• reveal the holes in your webserver: nikto 1.35
  
• reveal the holes in your webserver: nikto 1.35 ciont
  
• securing you box with bastille
  
• securing your box with bastille cont
  
• securing your box with bastille cont 2
  

• forensic process and tricks
  
• forensic process and tricks cont
  
• forensic analysis of malcode - step by step
  
• advanced web-based honeypot techniques
  
• custom web-based honeypots with ghh
  

• smtp relay honeypot
  
• web exploits - don't be a victim
  
• scripting internet connections under windows
  
• credit card security
  
• cross posted sql injection measures
  

• making your windows pc more private and secure
  
• a quick introduction to tcp session hijacking
  
• the definitive guide to chrooting
  
• the definitive guide to chrooting cont
  
• te definitive guide to chrooting cont 2
  

• computertutorials
  
• computertutorials2
  
• securitytutorials
  
• computertutorials3
  
• computertutorials4
  
• securitytutorials2
  
• securitytutorials3
  
• securitytutorials4
  

 

SECURING YOUR BOX WITH BASTILLE CONT...


Bastille is a hardening tool which is very effective at locking down your system, and all it requires is a few minutes of your time! It is currently available for the major Linux distributions: SUSE, Mandrake (Mandriva releases are still not supported), Fedora Core, Red Hat, Debian, and Gentoo, and it is also available for HP-UX and Mac OS X, as well as the source code which can be compiled on most *nix systems. In this tutorial I shall take you through the steps of installing it and setting it up properly in order to secure your system better than before (this tutorial may not be suitable for you if the computer is not a workstation or for personal use).

* Type in your name here, and then press Tab and hit "Next".

* If you're running a server you may want to set this one as "Yes", but otherwise leave it as the default "No".

* Choose "No" here unless the computer is a public one and you want to restrict console access to some users.

* Also choose "No" here - if not you will end up with some pretty large logs.

* This screen is another informative one, so just hit "Next".

* As my computer is a laptop, I chose "No" here. But, if you're using a desktop, press "Yes".

* Press "No" here if you are on a Local Area Network (LAN) and connect to other computers regularly.

* Again, if you are using a laptop you'll probably want to press "No". Otherwise, "Yes" is fine.

* GPM is fairly useless unless you do not like using the keyboard to move around in console, so hit "Yes" here unless you really do want it.

* If you have a Hewlett-Packard all-in-one scanner/fax/printer, then choose "No". Otherwise choose "Yes". (Most of you should not see this screen).

* Unless you connect to the internet via ISDN, choose "Yes".

             * Choose "Yes" here to deactivate 'kudzu'. (Most of you should not see this screen)

* Hit "Yes" to stop sendmail running in daemon mode.

* Another info screen - press "Next".

* I advise you press "No" here to keep printing enabled.

* Hit "No" not to install the TMPDIR/TMP scripts.

* Then, press "Yes" to run the packet filtering script. Here is where we shall configure the firewall.

* Hit "Next".

* Hit "No" (unless your computer is acting as a gateway to the internet, and you plan to have a LAN behind it).

 

* Remove the text and hit "Next".
 

Original Tutorial by j_k9 for TheTAZZone-TAZForum

Originally posted on March 10th, 2006 here

Do not use, republish, in whole or in part, without the consent of the Author. TheTAZZone policy is that Authors retain the rights to the work they submit and/or post...we do not sell, publish, transmit, or have the right to give permission for such...TheTAZZone merely retains the right to use, retain, and publish submitted work within it's Network.