Language Selection

English French German Italian Portuguese Spanish

Building Systems Secure From The Start

Filed under
Software

Default operating system installs on a server are almost always wrong. Unfortunate, but true. In an attempt to build a generic system that appeals to as many situations as possible, the default install is often overloaded with software that is not necessary, and a filesystem layout that would allow one rogue daemon to fill up the entire drive. This is wrong, but easily remedied. A little extra care during the installation and initial setup of the server will result in a system that is smaller, cleaner, easier to maintain, and more secure than what ships on a default install.

FIlesystem Layout

I’ve mentioned before how to setup a filesystem to allow for maximum control and flexibility, so I won’t dive into the details here. Suffice to say that the basic idea is to put as much as possible into a volume manager like LVM, and then give each partition only as much as it needs.

rest here




More in Tux Machines

Ubuntu 15.04 Vivid Vervet Final Beta Available For Download

Ubuntu 15.04 Vivid Vervet final beta was released today, bringing quite a few changes, like locally integrated menus (LIM) by default, upstart was replaced with systemd by default as well as various other improvements and fixes. Let's take a look at what's new! Read more Also: Kubuntu Vivid Beta 2

The Changing Cost of Open Source

At one time higher ed wanted community-built software because of the $0 price tag; now many universities are paying somebody else to keep open source projects moving forward. Read more

Allwinner Continues Jerking Around The Open-Source Community

While Allwinner has been caught violating the (L)GPL and resulted in obfuscating their code and playing around with their advertised licenses, now this ARM vendor is taking things a step further. Read more Also: Allwinner Plays Around With Licenses On Its Media Codec

OS X 10.10 vs. Ubuntu 15.04 vs. Fedora 21 Tests: Linux Sweeps The Board

With having a new Apple Mac Mini in our testing labs this week, I ran some basic benchmarks comparing Mac OS X 10.10.2 to Ubuntu 15.04 to Fedora 21 in a few different configurations. Read more