CENTOS 7 Auto Hardening
$30-250 USD
货到付款
You will need to build set of files, by the specification I will provide you, in order to make automatic hardening of CentOs 7.
The specification contains less than 300 parameters total, like the example:
Examples:
1. Securing xinetd 2.1.1.1. /etc/xinetd.d Disabled
1.1.2. Install TCP Wrappers Disabled
1.1.3. Network Services Banners Disabled
1.1.4. Network Services Access Control (xinetd) Disabled
2.2.1 Network Parameters Modification
2.2.1.1. net.ipv4.tcp_max_syn_backlog 4096
2.2.1.2. net.ipv4.tep_syncookies 1
2.2.1.3. netipv4.conf.all.cp_filter 1
2.2.1.4. net.ipv4.conf.all.accept_source route 0
2.4.3. Files and Directories Permissions 2.4.3.1. /etc/passwd Owner: root; Group: root
2.4.3.2. /etc/group Owner: root; Group: root
2.4.3.3. /etc/shadow Owner: root; Group: root
2.6.1 Account and Password Settings 2.6.1.1. No legeey + entries in passwd, shadow, and group files Remove all entries of “+:” from the files passwd, shadow, and group files
2.6.1.2. Block System Accounts Lock all accounts (except root) with uid less than 500 and set /sbin/nologin as the login shell
2.6.1.3. No accounts with empty password fields Assign passwords to user accounts
2.7.2. Authentication 2.7.2.1. ChallengeResponseAuthentication should be set to No # SSH setting: ChallengeResponseAuthentication No
2.7.2.2. GSSAPIAuthentication should be set to no unless GSSAPI authentication is required. This is used for direct Kerberos authentication # SSH setting: GSSAPtIAuthentication no
2.7.2.3. GSSAPICleanupCredentials should be set to the default value yes. This setting deletes Kerberos credentials when the user logs out # SSH setting: GSSAPICleanupCredentials yes
Please make sure you know how to provide automated hardening files for the examples I have provided, before making any bid.
项目ID: #21332960
关于项目
授予:
Hello. I have more than 20 years experience in IT security and Linux system administration. I have managed large fleets of Linux systems using shell scripting, Puppet and Ansible and I have done exactly this kind of 更多
有8名威客正在参与此工作的竞标,均价$262/小时
Hey there, I'm a Systems Engineer with coding skills. I have been working with Linux/Unix-systems for years. I can automate the hardening parameters using Shell scripts, Python, and Perl. O'd prefer Shell. Rega 更多
Hi there, I would be happy to help! I have extensive experience in automation and Linux OS hardening :) About me: I am an experienced DevOps/Cloud Engineer with over 10 years IT experience. Performance, stability, re 更多
Hello sir, done 7+ years of script installs and GNU/Linux and Unix system administration. I can handle your scripts with ease and perfection. Look at my previous work to get an idea about my precision. I can also prov 更多
Hi, I can automate this in different way , I have below options . 1. Using bash script 2. Using Ansible Please let me know which one you want to proceed with . Thankyou
hello, I create some similar project before using ansible. so you can trust me to provide you the total solution. Relevant Skills and Experience please check my profile. I am linux system administrator and devops Engi 更多