similar to: Center for Internet Security FreeBSD benchmark

Hello, Has anyone tried out the security scoring tool at http://www.cisecurity.org/bench_freebsd.html? Any thoughts or opinions? Regards, stheg __________________________________ Do you Yahoo!? Yahoo! Mail - 250MB free storage. Do more. Manage less. http://info.mail.yahoo.com/mail_250

Hi We have 2 servers running samba 1 is linux 7 /samba 4.2.3 1 is linux 6 /samba 3.6.23-25.0.1 Both are joined to a Windows Domain Both use ADS for security (we use CAC on the client) Recently users of the samba 3.6 shares have been having trouble connecting The issue seems to be theclient registry setting :

SELinux? On 22 April 2015 at 09:11, John R Pierce <pierce at hogranch.com> wrote: > On 4/21/2015 11:34 PM, Eero Volotinen wrote: > >> apply also ideas from this document: >> https://benchmarks.cisecurity.org/downloads/show-single/?file=rhel6.130 >> > > that should be your baseline. I suspect you'll find all the things you > mentioned are discussed in

apply also ideas from this document: https://benchmarks.cisecurity.org/downloads/show-single/?file=rhel6.130 -- Eero 2015-04-22 9:30 GMT+03:00 Tim <lists at kiuni.de>: > I am very interested. > > One of my suggestions: > > Firewall: > Network based firewall zone assignment (possibly disabling interface based > assignment) > > Regards > Tim > > Am 22.

I think, this SIG would/should care about hardening CentOS itself as a system not a complete environment (proxies, firewalls, etc.) The examples of the opener show this. Something else could be integrity checking possibly. I imagine a tool/script that could apply hardening stuff. Regards Tim Am 22. April 2015 09:23:52 MESZ, schrieb Eero Volotinen <eero.volotinen at iki.fi>: >Sounds

Overview ======== This module implements the Center for Internet Security (CIS) Security Configuration Benchmark for Red Hat Enterprise Linux 6 v.1.1.0 (avilable at http://benchmarks.cisecurity.org). Each scored control has been implemented as a class or a custom fact. Installation ============ Please either: - Clone git repo from https://github.com/arildjensen/cis-puppet - Run "puppet

On 4/21/2015 11:34 PM, Eero Volotinen wrote: > apply also ideas from this document: > https://benchmarks.cisecurity.org/downloads/show-single/?file=rhel6.130 that should be your baseline. I suspect you'll find all the things you mentioned are discussed in the CIS benchmarks. -- john r pierce, recycling bits in santa cruz

Sounds like a bit basic stuff? How about hardening ciphers, two factor authentication, snort, web application firewall and scap scanning? Eero 22.4.2015 10.14 ap. "Andrew Holway" <andrew.holway at gmail.com> kirjoitti: > SELinux? > > On 22 April 2015 at 09:11, John R Pierce <pierce at hogranch.com> wrote: > > > On 4/21/2015 11:34 PM, Eero Volotinen wrote:

On 11/8/2016 9:28 AM, Dipal Bhatt wrote: > Unfortunately, that's the constraint it seems hence, there's inquiry of > other options. But, looks like, any el6 package should work as long as we > meet the dependencies? mixing current 6.8 packages with very old 6.3 packages and libraries is a recipe for problems. these combinations are simply untested. If you're

Hello everyone, If you haven't seen it: https://isc.sans.edu/forums/diary/Quick+Audit+of+NIX+Systems/20771/ I just compiled and ran it on CentOS 5 and 6. The audit came up clean for me. It's worth a run to see if you have anything blatant wrong...or to see if you have been rooted. Gilbert ******************************************************************************* Gilbert Sebenste

Send CentOS-announce mailing list submissions to centos-announce at centos.org To subscribe or unsubscribe via the World Wide Web, visit http://lists.centos.org/mailman/listinfo/centos-announce or, via email, send a message with subject or body 'help' to centos-announce-request at centos.org You can reach the person managing the list at centos-announce-owner at centos.org When

CESA-2006:0199 Critical CentOS 3 i386 mozilla - security update CentOS Errata and Security Advisory CESA-2006:0199 mozilla security update for CentOS 3 i386: https://rhn.redhat.com/errata/RHSA-2006-0199.html The following updated file has been uploaded and is currently syncing to the mirrors: i386: updates/i386/RPMS/mozilla-1.7.12-1.1.3.4.centos3.i386.rpm

Send CentOS-announce mailing list submissions to centos-announce at centos.org To subscribe or unsubscribe via the World Wide Web, visit http://lists.centos.org/mailman/listinfo/centos-announce or, via email, send a message with subject or body 'help' to centos-announce-request at centos.org You can reach the person managing the list at centos-announce-owner at centos.org When

CentOS Errata and Security Advisory 2006:0199 https://rhn.redhat.com/errata/RHSA-2006-0199.html The following updated files have been uploaded and are currently syncing to the mirrors: files: updates/ia64/RPMS/mozilla-1.7.12-1.1.3.4.centos3.ia64.rpm updates/ia64/RPMS/mozilla-chat-1.7.12-1.1.3.4.centos3.ia64.rpm updates/ia64/RPMS/mozilla-devel-1.7.12-1.1.3.4.centos3.ia64.rpm

CentOS Errata and Security Advisory 2006:0199 https://rhn.redhat.com/errata/RHSA-2006-0199.html The following updated files have been uploaded and are currently syncing to the mirrors: files: updates/ia64/RPMS/mozilla-1.7.12-1.4.2.centos4.ia64.rpm updates/ia64/RPMS/mozilla-chat-1.7.12-1.4.2.centos4.ia64.rpm updates/ia64/RPMS/mozilla-devel-1.7.12-1.4.2.centos4.ia64.rpm

CentOS Errata and Security Advisory CESA-2006:0199 mozilla security update for CentOS 3 x86_64: https://rhn.redhat.com/errata/RHSA-2006-0199.html The following updated file has been uploaded and is currently syncing to the mirrors: x86_64: updates/x86_64/RPMS/mozilla-1.7.12-1.1.3.4.centos3.i386.rpm updates/x86_64/RPMS/mozilla-1.7.12-1.1.3.4.centos3.x86_64.rpm

CentOS Errata and Security Advisory 2006:0199 https://rhn.redhat.com/errata/RHSA-2006-0199.html The following updated files have been uploaded and are currently syncing to the mirrors: s390: updates/s390/RPMS/mozilla-1.7.12-1.1.3.4.centos3.s390.rpm updates/s390/RPMS/mozilla-chat-1.7.12-1.1.3.4.centos3.s390.rpm updates/s390/RPMS/mozilla-devel-1.7.12-1.1.3.4.centos3.s390.rpm

CentOS Errata and Security Advisory 2006:0199 https://rhn.redhat.com/errata/RHSA-2006-0199.html The following updated files have been uploaded and are currently syncing to the mirrors: x86_64: mozilla-1.7.12-1.4.2.centos4.x86_64.rpm mozilla-chat-1.7.12-1.4.2.centos4.x86_64.rpm mozilla-devel-1.7.12-1.4.2.centos4.x86_64.rpm mozilla-dom-inspector-1.7.12-1.4.2.centos4.x86_64.rpm

CentOS Errata and Security Advisory 2006:0199 https://rhn.redhat.com/errata/RHSA-2006-0199.html The following updated files have been uploaded and are currently syncing to the mirrors: i386: mozilla-1.7.12-1.4.2.centos4.i386.rpm mozilla-chat-1.7.12-1.4.2.centos4.i386.rpm mozilla-devel-1.7.12-1.4.2.centos4.i386.rpm mozilla-dom-inspector-1.7.12-1.4.2.centos4.i386.rpm

CentOS Errata and Security Advisory 2006:0199 https://rhn.redhat.com/errata/RHSA-2006-0199.html The following updated files have been uploaded and are currently syncing to the mirrors: files: updates/alpha/RPMS/mozilla-1.7.12-1.4.2axp.centos4.alpha.rpm updates/alpha/RPMS/mozilla-chat-1.7.12-1.4.2axp.centos4.alpha.rpm updates/alpha/RPMS/mozilla-devel-1.7.12-1.4.2axp.centos4.alpha.rpm