Talk:Hardening Linux

From ChekMate Security Group

Errata

We recived some errata from sth.

Hi Kirsten,

I'm writing to you since yours is the only email address I was able to
find on ChekMate Security Group's wiki site. Hopefully, you can pass this
on to the right person.

I was reading Shannon McNaught's "CentOS Locked Down Kickstart" article
(so far, very informative), which links to this page:

http://www.chekmate.org/wiki/index.php/Hardening_Linux

There appears to be an error in this section:
http://www.chekmate.org/wiki/index.php/Hardening_Linux#The_password_length

I think this passage:

"You can see that I got 1 credit for a alphanumeric character and a credit
for each nonalphanumeric character. "gjtodgsdf1$" has a length of 11, 1
credit for alpha-numeric, 2 credits for non-alphanumeric character (1 and
$) which gives me a credit of 3, hence the password length of 11 was
accepted."

should read differently, although I'm not sure how. There appears to be
some mixup of what's "alphanumeric" and what's not. Since this is the
first I've read of this mechanism, though, I don't know precisely how to
correct it.

Additionally, there's a little inconsistency in an example, farther down
that same page
(http://www.chekmate.org/wiki/index.php/Hardening_Linux#Controlling_access_time_to_services).
I think this:

"The above time control access line means to deny all user access to
console-login at all times except for the super-user 'root' and the user
'smcnaught'."

should probably read:

"The above time control access line means to deny all user access to
console-login at all times except for the super-user 'root' and the user
'gmourani'."

Thanks to your group for providing an excellent resource!

Cheers,

-sth

I fixed these up, they were just typos it looks like. Forge