Security Handbook

From Gentoo Wiki
Jump to: navigation, search
Security Handbook
Pre-installation concerns
Tightening security
Logging
Mounting partitions
User and group limitations
File permissions
PAM
TCP wrappers
Kernel security
Securing services
Chrooting and virtual servers
Firewalls
Intrusion detection
Staying up-to-date

The Security handbook is a step-by-step guide for hardening Gentoo Linux.

Find the individual parts below or view the all-in-one-page Security handbook.

Warning
Much of the content of the Security handbook has not been modified since 2010 and may be a bit behind the times. Until further notice treat the content with caution.

Contents

Pre-installation concerns
Why is security an important part for every server admin?
Tightening security
Tightening security during and after installation.
Logging
Choose between (at least) three different system loggers.
Mounting partitions
/etc/fstab provides many security options.
User and group limitations
Control system resource usage.
File permissions
Securing local files.
PAM
Pluggable Authentication Modules.
TCP wrappers
Control access to services.
Kernel security
Instructions for securing the kernel.
Securing services
Help on ensuring system daemons are secure.
Chrooting and virtual servers
Isolating servers.
Firewalls
A guide on packet filtering.
Intrusion detection
How to discover if intruders have entered a system.
Staying up-to-date
Ensuring the latest security updates.

This article is based on a document formerly found on our main website gentoo.org.
The following people contributed to the original document: Kim Nielsen (author), John P. Davis (editor), Eric R. Stockbridge (editor), Carl Anderson (editor), Jorge Paulo (editor), Benny Chuang (editor), Sune Jeppesen (editor), Tiemo Kieft (editor), Zack Gilburd (editor), Dan Margolis (editor), and Joshua Saddler (editor) on April 2, 2010.
They are listed here as the Wiki history does not allow for any external attribution. If you edit the Wiki article, please do not add yourself here; your contributions are recorded on the history page.