|
1 2 3 4 5 6 7 |
wget http://www.openssl.org/source/openssl-0.9.7b.tar.gz tar -xvzf openssl-0.9.7b.tar.gz cd openssl-0.9.7b ./config make make test make install |
Archive | Reliable Penguin
Linux and open-source solutions.
Force user to change password on first login
|
1 2 3 |
> useradd [username] > passwd [username] --> will be prompted to enter initial password > chage -d 0 [username] |
Force user to change password on next login
|
1 |
> chage -d 0 [username] |
ProFTPd
|
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 |
http://www.proftpd.org > wget ftp://ftp.proftpd.org/distrib/source/proftpd-1.2.9.tar.gz > tar -xvzf proftpd-1.2.9.tar.gz > cd proftpd-1.2.9 > ./configure --prefix=/usr/local --sysconfdir=/etc \ --localstatedir=/var/run > make > make install > cd contrib/dist/rpm > cp proftpd.init.d /etc/init.d/proftpd > chmod 755 /etc/init.d/proftpd > cp proftpd.logrotate /etc/logrotate.d/proftpd > cp ftp.pamd /etc/pam.d/ftp > groupadd nogroup Edit /etc/proftpd.conf a. Comment out the section from: <Anonymous ~ftp> to </Anonymous> b. Add the following line to the end of the file: DefaultRoot ~ Save the modified config file. > chkconfig --add proftpd > chkconfig --level 345 proftpd on > service proftpd start |
Redhat Lockdown
Here are some services that I like to turn off on RedHat:
|
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 |
chkconfig --level 2345 netfs off service netfs stop chkconfig --level 2345 pcmcia off service pcmcia stop chkconfig --level 2345 isdn off service isdn stop chkconfig --level 2345 portmap off service portmap stop chkconfig --level 2345 nfslock off service nfslock stop chkconfig --level 2345 rhnsd off service rhnsd stop chkconfig --level 2345 xfs off service xfs stop chkconfig --level 2345 cups off service cups stop chkconfig --level 2345 vncserver off service vncserver stop |