First page Back Continue Last page Summary Graphic

Patching the System (cont.)

  • Delete extraneous users (like uucp) from /etc/passwd. Inactive users should have a * in field 2 of /etc/passwd and the shell set to /bin/false.
  • Install Pretty Good Privacy (pgp) and/or GNU Privacy Guard (gpg), since many of the security packages are signed. Make sure you get the detached sig file and keys.
  • Set up Secure Shell.
  • This will give you secure access to the rest of the network.
  • Compile with tcp-wrappers support and without rsh.