Last active
July 6, 2024 12:31
-
-
Save AnnoyingTechnology/34a415f6931aca97cc2c38dd144c6f66 to your computer and use it in GitHub Desktop.
Revisions
-
AnnoyingTechnology revised this gist
May 29, 2018 . 1 changed file with 5 additions and 4 deletions.There are no files selected for viewing
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters. Learn more about bidirectional Unicode charactersOriginal file line number Diff line number Diff line change @@ -17,10 +17,6 @@ apt install apt-listbugs apt install knockd # fail2ban : ban bruforce attacks apt install fail2ban # needrestart : checks if system needs a restart after updates apt install needrestart # unattended-upgrades : applies reliable security upgrades on its own @@ -37,5 +33,10 @@ apt install iptables-persistent apt install logwatch # logcheck : report suspicious/unusual log messages by email apt install logcheck # detect and block portscans (this one is commented out by default, because your server should either # be placed behing a NAT router that only forwards required ports # be running a set of IPTABLES rules that already block all but the required ports # apt install portsentry # ************************************************* # this script is only an helper to install the most # common/userful security tools for most servers -
May 29, 2018 . 1 changed file with 2 additions and 4 deletions.There are no files selected for viewing
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters. Learn more about bidirectional Unicode charactersOriginal file line number Diff line number Diff line change @@ -37,7 +37,5 @@ apt install iptables-persistent apt install logwatch # logcheck : report suspicious/unusual log messages by email apt install logcheck # this script is only an helper to install the most # common/userful security tools for most servers -
May 29, 2018 . 1 changed file with 12 additions and 1 deletion.There are no files selected for viewing
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters. Learn more about bidirectional Unicode charactersOriginal file line number Diff line number Diff line change @@ -1,4 +1,8 @@ #!/bin/bash # !!!!!!!!!!!!!!!! DISCLAIMER !!!!!!!!!!!!!!!!!!!!! # !! THIS WILL NOT SECURE YOUR SYSTEM ON ITS OWN !! # !! Most of these tools should be set up and/or !! # !!!!!! ran by a cron with proper repporting !!!!! # update apt apt update # rkhunter : rootkit scanner @@ -29,4 +33,11 @@ apt install debsecan apt install auditd # iptables-persistent : brings back your iptables rules after a reboot apt install iptables-persistent # logwatch : generates synthetic log repport, to be sent periodically by email apt install logwatch # logcheck : report suspicious/unusual log messages by email apt install logcheck # !!!!!!!!!!!!!!!! DISCLAIMER !!!!!!!!!!!!!!!!!!!!! # !! THIS WILL NOT SECURE YOUR SYSTEM ON ITS OWN !! # !! Most of these tools should be set up and/or !! # !!!!!! ran by a cron with proper repporting !!!!! -
May 29, 2018 . 1 changed file with 1 addition and 1 deletion.There are no files selected for viewing
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters. Learn more about bidirectional Unicode charactersOriginal file line number Diff line number Diff line change @@ -6,7 +6,7 @@ apt install rkhunter # chkrootkit : another rootkit scanner apt install chkrootkit # debsums : checksums of system files for sanity checks apt install debsums # apt-listbugs : check for bugs before updates apt install apt-listbugs # knockd : open ports on demand -
May 29, 2018 . 1 changed file with 13 additions and 15 deletions.There are no files selected for viewing
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters. Learn more about bidirectional Unicode charactersOriginal file line number Diff line number Diff line change @@ -1,34 +1,32 @@ #!/bin/bash # update apt apt update # rkhunter : rootkit scanner apt install rkhunter # chkrootkit : another rootkit scanner apt install chkrootkit # debsums : checksums of system files for sanity checks apt install debsums # apt-listbugs : check for bugs before updates apt install apt-listbugs # knockd : open ports on demand apt install knockd # fail2ban : ban bruforce attacks apt install fail2ban # detect and block portscans (this one is commented out by default, because your server should either # be placed behing a NAT router that only forwards required ports # be running a set of IPTABLES rules that already block all but the required ports # apt install portsentry # needrestart : checks if system needs a restart after updates apt install needrestart # unattended-upgrades : applies reliable security upgrades on its own apt install unattended-upgrades # lynis : audits a system for best security practices apt install lynis # debsecan : list known vulnerabilities for current system apt install debsecan # auditd : keeps track of users actions/sessions apt install auditd # iptables-persistent : brings back your iptables rules after a reboot apt install iptables-persistent # some of these tools should be set up to be ran by a cron, and to repport via email -
May 29, 2018 . 1 changed file with 21 additions and 17 deletions.There are no files selected for viewing
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters. Learn more about bidirectional Unicode charactersOriginal file line number Diff line number Diff line change @@ -1,30 +1,34 @@ #!/bin/bash # update apt apt update # install proper tools apt install \ # rkhunter : rootkit scanner rkhunter \ # chkrootkit : another rootkit scanner chkrootkit \ # debsums : checksums of system files for sanity checks debsums \ # apt-listbugs : check for bugs before updates apt-listbugs \ # knockd : open ports on demand knockd \ # fail2ban : ban bruforce attacks fail2ban \ # detect and block portscans (this one is commented out by default, because your server should either # be placed behing a NAT router that only forwards required ports # be running a set of IPTABLES rules that already block all but the required ports # portsentry \ # needrestart : checks if system needs a restart after updates needrestart \ # unattended-upgrades : applies reliable security upgrades on its own unattended-upgrades \ # lynis : audits a system for best security practices lynis \ # debsecan : list known vulnerabilities for current system debsecan \ # auditd : keeps track of users actions/sessions auditd \ # iptables-persistent : brings back your iptables rules after a reboot iptables-persistent # some of these tools should be set up to be ran by a cron, and to repport via email -
May 29, 2018 . No changes.There are no files selected for viewing
-
May 29, 2018 . 1 changed file with 5 additions and 0 deletions.There are no files selected for viewing
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters. Learn more about bidirectional Unicode charactersOriginal file line number Diff line number Diff line change @@ -21,5 +21,10 @@ needrestart \ unattended-upgrades \ # audits a system for best security practices lynis \ # list known vulnerabilities for current system debsecan \ # keeps track of users actions/sessions audits \ -
May 29, 2018 . 1 changed file with 1 addition and 0 deletions.There are no files selected for viewing
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters. Learn more about bidirectional Unicode charactersOriginal file line number Diff line number Diff line change @@ -1,3 +1,4 @@ #!/bin/bash apt update apt install \ # rootkit scanner -
May 29, 2018 .There are no files selected for viewing
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters. Learn more about bidirectional Unicode charactersOriginal file line number Diff line number Diff line change @@ -0,0 +1,24 @@ apt update apt install \ # rootkit scanner rkhunter \ # another rootkit scanner chkrootkit \ # checksums of system files for sanity checks debsums \ # check for bugs before updates apt-listbugs \ # open ports on demand knockd \ # ban bruforce attacks fail2ban \ # detect and block portscans portsentry \ # checks if system needs a restart after updates needrestart \ # applies reliable security upgrades on its own unattended-upgrades \ # audits a system for best security practices lynis \