some general good security tasks for hardening:
1) turn off telnet and ftp in inetd.
2) set up keypair authentication for ssh access.
3) once you have keypairs set up, turn off password authentication in sshd.
4) configure sendmail to use the access database, and update it regularly to reduce the strain from spammers.
5) update hosts.allow and hosts.deny in /etc to restrict remote access (ssh uses these files also, just like inetd).
== sfisque
|