CENTOS 7 Auto Hardening

已完成 已发布的 4 年前 货到付款

$30-250 USD

货到付款

已完成 货到付款

You will need to build set of files, by the specification I will provide you, in order to make automatic hardening of CentOs 7.

The specification contains less than 300 parameters total, like the example:

Examples:

1. Securing xinetd 2.1.1.1. /etc/xinetd.d Disabled

1.1.2. Install TCP Wrappers Disabled

1.1.3. Network Services Banners Disabled

1.1.4. Network Services Access Control (xinetd) Disabled

2.2.1 Network Parameters Modification

2.2.1.1. net.ipv4.tcp_max_syn_backlog 4096

2.2.1.2. net.ipv4.tep_syncookies 1

2.2.1.3. netipv4.conf.all.cp_filter 1

2.2.1.4. net.ipv4.conf.all.accept_source route 0

2.4.3. Files and Directories Permissions 2.4.3.1. /etc/passwd Owner: root; Group: root

2.4.3.2. /etc/group Owner: root; Group: root

2.4.3.3. /etc/shadow Owner: root; Group: root

2.6.1 Account and Password Settings 2.6.1.1. No legeey + entries in passwd, shadow, and group files Remove all entries of “+:” from the files passwd, shadow, and group files

2.6.1.2. Block System Accounts Lock all accounts (except root) with uid less than 500 and set /sbin/nologin as the login shell

2.6.1.3. No accounts with empty password fields Assign passwords to user accounts

2.7.2. Authentication 2.7.2.1. ChallengeResponseAuthentication should be set to No # SSH setting: ChallengeResponseAuthentication No

2.7.2.2. GSSAPIAuthentication should be set to no unless GSSAPI authentication is required. This is used for direct Kerberos authentication # SSH setting: GSSAPtIAuthentication no

2.7.2.3. GSSAPICleanupCredentials should be set to the default value yes. This setting deletes Kerberos credentials when the user logs out # SSH setting: GSSAPICleanupCredentials yes

Please make sure you know how to provide automated hardening files for the examples I have provided, before making any bid.

Linux Red Hat CentOs Scripting 计算机安全

项目ID: #21332960

关于项目

8个方案 远程项目 活跃的4 年前

想要赚钱吗?

在Freelancer上竞标的好处

设置你的预算和时间表
通过工作获取报酬
大致描述您的提案
免费注册并竞标工作

授予:

kiwidaniel的简历照片
kiwidaniel

Hello. I have more than 20 years experience in IT security and Linux system administration. I have managed large fleets of Linux systems using shell scripting, Puppet and Ansible and I have done exactly this kind of 更多

$250 USD 在2天内
(1条评论)
3.5

有8名威客正在参与此工作的竞标,均价$262/小时

AhmadSameer的简历照片
AhmadSameer

Hey there, I'm a Systems Engineer with coding skills. I have been working with Linux/Unix-systems for years. I can automate the hardening parameters using Shell scripts, Python, and Perl. O'd prefer Shell. Rega 更多

$250 USD 在7天内
(53条评论)
5.5
aussiecloudguru的简历照片
aussiecloudguru

Hi there, I would be happy to help! I have extensive experience in automation and Linux OS hardening :) About me: I am an experienced DevOps/Cloud Engineer with over 10 years IT experience. Performance, stability, re 更多

$200 USD 在5天内
(19条评论)
5.0
drkamine的简历照片
drkamine

Hello, i'm an expert IT with more 15 years of experience in IT industry . i'm certified Cisco networking professional 300-100 and 300-115 and Linux professional lpi 101, 102 and RHCSA and VCP 4, 5,5.5 and Data Center a 更多

$500 USD 在4天内
(20条评论)
4.2
thebartowski的简历照片
thebartowski

Hello sir, done 7+ years of script installs and GNU/Linux and Unix system administration. I can handle your scripts with ease and perfection. Look at my previous work to get an idea about my precision. I can also prov 更多

$100 USD 在2天内
(8条评论)
4.4
antima5的简历照片
antima5

Hi, I can automate this in different way , I have below options . 1. Using bash script 2. Using Ansible Please let me know which one you want to proceed with . Thankyou

$333 USD 在3天内
(6条评论)
3.4
aslanish1990的简历照片
aslanish1990

hello, I create some similar project before using ansible. so you can trust me to provide you the total solution. Relevant Skills and Experience please check my profile. I am linux system administrator and devops Engi 更多

$211 USD 在5天内
(1条评论)
1.3
发布一个这样的项目