Block anything you are not asked about explicitly, including all incoming traffic. If this is the first time you are using
IMPORTANT: Manual action required to complete this configuration. See the TODO.txt file for details.
Actions Setup a basic
Headline | Provide information on how to get a copy of IPFilter. |
Default | Y |
Description | Firewalls generally make up the first line of defense in any network security |
| architecture. IPFilter is a free |
| It looks like you have IPFilter installed, but that does not mean that it is |
| configured. |
| for your needs. |
Actions | Provide information on how to get a copy of IPFilter in TODO.txt. |
Headline | Configure the | |
Default | N |
|
Description | Secure Shell is one of the most important tools in the administrator security | |
| toolkit. It enables remote secure login and command execution, and can wrap | |
| ||
| tunnel. This item configures SSH to conform with some | |
| best practices. This item configures: | |
| • Use only protocol 2, a protocol generally considered more secure | |
| • Ignore rhosts, to avoid trusting remote hosts to assert user id without | |
|
| |
| • Forward X11 traffic, if any, in a secure SSL tunnel | |
| • Block use of accounts with empty passwords | |
| • Use the contents of /etc/issue (also set in | |
|
| banner |
Actions | Set the following parameters in /etc/opt/ssh/sshd_config: | |
| • | |
| • | |
| • | |
| • | |
| • | |
| • | |
| • | |
| • | |
Headline | Restrict the diagnostic daemon to local connections. |
Default | N |
50 Question modules