I had to do some maintenance work on a Linux based server. It was mainlyjust archiving some files around and updating packages andconfigurations. However, as part of the maintenance I took theopportunity to put in some simple technical security controls in placeand documented some of them here for my reference.
MySQL Database There was a MySQL server runningthat was only needed for the local host, but a “netstat -ltn” indicatedthat it was not bound to any specific IP, i.
Read More →
OSSEC is an open source host-based IDS that performs log analysis, andis able to correlate and analyse logs for a number of Linux (andWindows, but that is outside the scope of this blog post) servers. Thesoftware architecture of OSSEC and the use of agents, lends OSSEC toflexible deployment and management [1].
Set-up the Atomic repository that already has the appropriate OSSECpackages and install them would be the easiest way.
Read More →