Ubuntu Checklist Examine the ReadMe.txt file - PowerPoint Presentation

Slide1

Ubuntu Checklist

Examine the ReadMe.txt file

Manage user and root passwords

s

udo

passwd

<

username

>

change password of username

Change password policies in

/

etc

/

pam.d

/common-password

Turn off automatic login

Examine list of running services

p

s

-

aef

>

filename.txt

Stop/kill unnecessary services

Use

htop

or

sudo

service <

service-name

>

stop

Updates

sudo

apt-get update

s

udo

apt-get upgrade

Check to make sure the correct repository is selected

Enable automatic updates on a daily basis

Protect certain files/directories

sudo

chmod

XXX /path/to/fileX is 1, 2, or 4 or any sum of these1 is execute; 2 is write; 4 is read

Protect these directories

/

etc

/

passwd

/etc/groups/etc/gshadow/etc

/

sudoers

Configure/use

ufw

s

udo

ufw

enable

Allow/deny ports

sudo

ufw

allow <

process-name

OR port-number> to open a portsudo ufw deny <

process-name

OR

port-number

>

to close a port

Deny access from certain

ip

addresses

sudo

ufw

deny

from

<

ip

address range

>

to any port

<

port number

>

i

p

address range

a.b.c.d

/e

s

udo

ufw

status

Antivirus

Clam or

Avast

!

Scan for malicious software/files

If the software/files is stubborn remove manually by going into root accountCorrectly configure SSHEdit/etc/ssh/sshd_configOnly allow SSH access from certain known ip addresses using

ufw

commands

Delete SSH if it is not necessary

Set up a banner in SSH

Will not actually stop a hacker, just a message for legal purposes

In the SSH configuration file find:

#Banner /etc/issue.net

Remove

# and save the filesudo gedit /etc/issue.net to edit the banner