Exploring Cybersecurity Using a Linux Virtual Network: Hardening
TIMESTAMPS AND RESOURCES BELOW
In the third video of this series, we look at several ways to harden our Ubuntu and Fedora endpoints.
#linux #homelab #cybersecurity #pfsense
00:00 Introduction, What is Hardening?
01:13 Topics Covered
01:52 Set VM Network Adapters to Bridged/NAT, Test Connectivity
03:08 Topic 1 — Update the Kernel and Installed Packages
04:22 Updating the Kernel and Packages in Ubuntu
05:56 Updating the Kernel and Packages in Fedora
07:23 Topic 2 — Removing Unnecessary Software
08:58 Querying and Removing Packages on Fedora
10:44 Querying and Removing Packages on Ubuntu
11:59 Topic 3 — Find Open Ports with nmap
16:55 Topic 4 — Removing Unnecessary Services
18:26 Topic 5 — Locking User Accounts
20:46 Topic 6 — Lock the Root Account
22:46 Topic 7 — Hardening SSH
28:56 Topic 8 — Implementing the Host-Based Firewall in Ubuntu (UFW)
32:55 Summary
RESOURCES:
Updating the OS and Installed Packages:
DNF Update Vs Upgrade [Which One Is Better]
Managing Packages and Removing Unnecessary Software:
https://opensource.com/sites/default/files/gated-content/osdc_cheatsheet-apt-2021.5.30.pdf
https://blog.packagecloud.io/apt-cheat-sheet/
https://opensource.com/sites/default/files/gated-content/osdc_cheatsheet-dnf-2021.5.15.pdf
Looking for Open Ports:
https://www.securesolutions.no/zenmap-preset-scans/
Stopping Unneeded Services:
https://www.digitalocean.com/community/tutorials/how-to-use-systemctl-to-manage-systemd-services-and-units
Hardening SSH:
https://www.digitalocean.com/community/tutorials/how-to-configure-ssh-key-based-authentication-on-a-linux-server
Implementing the Host-Based Firewall:
https://www.redhat.com/sysadmin/beginners-guide-firewalld
https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/7/html/security_guide/sec-using_firewalls
by IT@40+
simple network management protocol
