Translation(s): none

The following are some system hardening recommendation from security auditor for default configuration of Debian GNU/Linux. You may apply if appropriate.

Login Credential

/etc/login.defs: Enforce changing password after limited days


/etc/ssh/sshd_config: Disable root login as many brute force attack target to 'root' user

?PermitRootLogin no

/etc/pam.d/common-password: Enforce using strong password (Requires libpam-cracklib)

password required nullok obscure md5 remember=11 min=6


/etc/issue, /etc/ Set warning message and remove server identity such as OS version

WARNING: This system is restricted access to authorized person only.

CategorySystemSecurity CategorySystemSecurity wholesale silver jewelry silver jewelry 925 silver wholesale jewelry