[Forgot Password]
Login  Register Subscribe

30480

 
 

423868

 
 

252588

 
 

909

 
 

196930

 
 

282

 
 
 
Paid content will be excluded from the download.

Filter
Matches : 30476 Download | Alert*

Deny Decline Messages Edit '/etc/dhcp/dhcpd.conf' and add or correct the following global option to prevent the DHCP server from responding the DHCPDECLINE messages, if possible: 'deny declines;'

Deny BOOTP Queries Unless your network needs to support older BOOTP clients, disable support for the bootp protocol by adding or correcting the global option: 'deny bootp;'

Disable DHCP Client For each interface on the system (e.g. eth0), edit '/etc/sysconfig/network-scripts/ifcfg-interface' and make the following changes: Correct the BOOTPROTO line to read: BOOTPROTO=none Add or correct the following lines, substituting the appropriate values based on your site's addressing scheme: NETMASK=255.255.255.0 IPADDR=192.168.1.2 GATEWAY=192.168.1.1

Enable the NTP Daemon The 'ntpd' service can be enabled with the following command: '$ sudo systemctl enable ntpd'

Auditing of 'Object Access:��File System' events on success should be enabled or disabled as appropriate.

Enable Postfix Service The Postfix mail transfer agent is used for local mail delivery within the system. The default configuration only listens for connections to the default SMTP port (port 25) on the loopback interface (127.0.0.1). It is recommended to leave this service enabled for local mail delivery. The 'postfix' service can be enabled with the following command: '$ sudo systemct ...

Configure LDAP Client to Use TLS For All Transactions Configure LDAP to enforce TLS use. First, edit the file '/etc/pam_ldap.conf', and add or correct the following lines: 'ssl start_tls' Then review the LDAP server and ensure TLS has been configured.

Disable Network File System Lock Service (nfslock) The Network File System Lock (nfslock) service starts the required remote procedure call (RPC) processes which allow clients to lock files on the server. If the local machine is not configured to mount NFS filesystems then this service should be disabled. The 'nfslock' service can be disabled with the following command: '$ sudo systemctl ...

Disable Secure RPC Client Service (rpcgssd) The rpcgssd service manages RPCSEC GSS contexts required to secure protocols that use RPC (most often Kerberos and NFS). The rpcgssd service is the client-side of RPCSEC GSS. If the system does not require secure RPC then this service should be disabled. The 'rpcgssd' service can be disabled with the following command: '$ sudo systemctl disable ...

Disable RPC ID Mapping Service (rpcidmapd) The rpcidmapd service is used to map user names and groups to UID and GID numbers on NFSv4 mounts. If NFS is not in use on the local system then this service should be disabled. The 'rpcidmapd' service can be disabled with the following command: '$ sudo systemctl disable rpcidmapd'


Pages:      Start    3012    3013    3014    3015    3016    3017    3018    3019    3020    3021    3022    3023    3024    3025    ..   3047

© SecPod Technologies