similar to: Asterisk and Bastille

Hi All:) I would like to start using a tool for automating of os hardening. I found some informations about Bastille. One things which attracted my attention is that in http://bastille-linux.sourceforge.net/news_updates.htm the last post is from January 29th, 2012 :D Is the tool ready to use at the moment with CentOS 6/7? Are there any alternatives which you can recommend? Thanks for all info

Has anyone got Bastille-linux running on Centos-5.6? http://bastille-linux.sourceforge.net claims RHEL5 support but I ran into problems running it on a Centos 5.6 test system. First I had to "ln -s /usr/lib64/Bastille /usr/lib" just to get it to run at all. Then I tried faking /etc/redhat-release with Red Hat Enterprise Linux Server release 5.6 ... but I get this (why would it want

I have a client project to implement PCI/DSS compliance. The PCI/DSS auditor has stipulated that the web server, application middleware (tomcat), the db server have to be on different systems. In addition the auditor has also stipulated that there be a NTP server, a "patch" server, The Host OS on all of the above nodes will be CentOS 6.2. Below is a list of things that would be

Hi, My boss asked me to harden a CentOS box by removing "hacker" tools, such as nmap, tcpdump, nc (netcat), telnet, etc. I would like to know which list of packages would you remove from a base install. I would appreciate if someone could point me to a "standard" way of doing this. I know there are procedures for hardening a machine (I remember reading about Bastille Linux)

Hi, Is there any automated tool like Bastille Linux for freebsd to harden the system security? Thanks jerry _________________________________________________________________ Send a funky MSN Messenger Christmas card http://www.msn.co.uk/christmascard

----- Original Message ----- From: <asterisk-users-request@lists.digium.com> To: <asterisk-users@lists.digium.com> Sent: Wednesday, December 01, 2004 7:07 AM Subject: Asterisk-Users Digest, Vol 5, Issue 6 > Send Asterisk-Users mailing list submissions to > asterisk-users@lists.digium.com > > To subscribe or unsubscribe via the World Wide Web, visit >

Hi, I'm new to the list, so "hello everybody" ... I have a (big) problem wih my new PDC under samba with ldap auth. When I start a new session, samba launch multiple instances of smbd for this new user in 5-10 minutes ... The system is very slow on the client and finish to crash and need to close the session. But, when I close the session, the smbd processes aren't

I'm finally biting the bullet, and replacing the 12-yr-old box that's been my firewall/router with an appliance. First, does anyone have any idea whether the WRT160 nl can use tomato? Second, is there any way, or any reason, I could/would want to run bastille against the firmware? mark

Hi, A new speculative cache side-channel vulnerability has been published at https://developer.arm.com/support/arm-security-updates/speculative-processor-vulnerability/downloads/straight-line-speculation, named "straight-line speculation”, CVE-2020-13844. In this email, I'd like to explain the toolchain mitigation we've prepared to mitigate against this vulnerability for AArch64.

> On 30 March 2018 at 15:08 "A. Schulze" <sca at andreasschulze.de> wrote: > > > Hello, > > to build + packages dovecot I use the usual Debian tool chain. That includes build with selected GCC options and running lintian. > > I notice since a long time (read: many earlier versions, up to 2.2.35) this lintian warnings: > > I: dovecot-core:

How would one go about setting up the wakeup feature of Asterisk to NOT call an extension, but to call a phone number? My setup works great for wakeup on local extensions, but I'd like to set it up to call external phone numbers automatically and play a specific sound file (to remind people of upcoming hair stylist appointments). I suppose either there'd have to be a web interface to

Hello, to build + packages dovecot I use the usual Debian tool chain. That includes build with selected GCC options and running lintian. I notice since a long time (read: many earlier versions, up to 2.2.35) this lintian warnings: I: dovecot-core: hardening-no-fortify-functions usr/lib/dovecot/auth N: N: This package provides an ELF binary that lacks the use of fortified libc N:

Hi everyone, Microsoft is going to tighten their AD LDAP binding security in mid-January 2020 [1][2]. I am wondering if this change is identical or similar to the "ldap server require strong auth=yes" parameter in smb.conf. Or if it more like "ldap server require strong auth=allow_sasl_over_tls". From [1] : """ Summary LDAP channel binding and LDAP

Hi Shao - looks like forgot to reply to this earlier post of yours, so here goes. On 2016.03.08 04:59, Shao Miller via Syslinux wrote: > 1. Customized Syslinux could be customized such that it refuses to boot > from USB. No amount of version-matching nor downloading from the > same source can help with that scenario. A different Syslinux would > be needed, by definition

Hi all, I have just started using shorewall. So far so good. I have two questions which I cant find an answer to either on the website or googling. They may be stupid so please forgive my ignorance. 1) What is shorewalls preferred operating status, running or stopped? What I mean is, some firewalls start-up and run, and they do their thing, then they stop. But the firewall is still really

On 9/11/06, Chris Lattner <sabre at nondot.org> wrote: > On Sat, 9 Sep 2006, Michael McCracken wrote: > >> No, gfortran in gcc 4.0 is, ehm, highly experimental (read: a piece of > >> junk). Gfortran in gcc 4.1 was the first one that worked for NIST (and > >> for SPEC). > > > > Hm. I had noticed a bunch of changes in the current sources, but had >

Greetings, I have spent over a month of my evenings working on this. I am indeed a Samba newbie. Version of Linux: Red Hat 7.2 with latest RPM's from RedHat ftp site on a minimal custom Red Hat install with bastille_linux installed. (tmp defense removed as it was interfering with samba using the tmp directory) I have tried this with bastille stopped and running with no change) Samba RPM

Thanks for all the amazing work with ambisonics Drew et al. We're looking forward to the 1.3 final release and have already been successfully using the ambisonic work in production code. Varun -- Engineering Manager Facebook Audio ---------------------------------------------------------------------- Message: 1 Date: Sun, 3 Jun 2018 13:02:18 +0100 From: Peter Robinson

On Mon, 11 Sep 2006, Michael McCracken wrote: >> be though. > > I'm thinking that effort on 4.0.1 gfortran is not worthwhile, since > 4.0.1 fails to compile some pretty basic examples, and there are some > pretty extensive changes between then and 4.2. ok >> comperable) to merge the LLVM changes into 4.1. I'm personally not >> interested in doing the work,

Should the URL match the word used in the subject? [0] [0] http://wiki.centos.org/SpecialInterestGroup/Hardening jerry On Wed, Apr 29, 2015 at 8:45 AM, Alan Bartlett <ajb at elrepo.org> wrote: > On 29 April 2015 at 14:23, Earl A Ramirez <earlaramirez at gmail.com> wrote: >> Dear Doc Admins, >> >> My name is Earl Ramirez and I have a particular interest with the