Tag Archives: Unix

I create a super simple set of tools to secure your Ubuntu server

And you can get it here: blm849/supersimplehardening: A super simple way to harden your server.

I create a lot of Ubuntu test servers, and I find that as soon as I create a Ubuntu server on a cloud environment, it gets immediately attacked by automated software. This is obviously a concern. A bigger concern is that when I went  searching for recommendations on how to harden such a server, I found  a wide variety of recommendations! It can be hard to know what to do. Still, I needed something. As a result, I created this package of scripts. The scripts do a number of things:

  • prevent direct root login to your server via ssh. This was one of the things I saw consistently happen and once someone cracks the root access on your machine, it’s game over.
  • stop some basic security holes, like IP spoofing
  • download some useful software, like logwatch, ufw and others
  • upgrade all software on the server

This is just a very very limited number of things to prevent attacks. But it is better than nothing.

If you install Apache, PHP, MySQL or other software on your machine, there are even more attacks that will be launched against it. I recommend you get a firewall up and running and at least run logwatch on a regular basis to look for potential attacks being launched against you.

Finally, if it is important for you to secure your server, don’t stop with my scripts. Go out and consult with IT security specialists right away.

Good luck!

Advertisements

How to Create Tarball & Compress to GZip Under Windows (.tar.gz) and why you should

If you are not familiar with Unix, then you might wonder why you would want to create tarballs and then gzip them. Recently I had a directory that was over 12 GB in size and I wanted to zip it up and send it to someone. By creating a tarball from it and then gzipping it, I was able to shrink it down to under 5 GB. That made it alot easier to send to the person.

Another reason to do this is you want to send a file from Windows to Unix. By compressing the file this way, you can be sure that the Unix user can uncompress it in a straightforward way.

For more on this, see:  How to Create Tarball & Compress to GZip Under Windows (.tar.gz) | Gettin’ Geek