Operating System’s and software default’s installation aren’t necessary secure. Server hardening is a process of tuning the server operating system to increase the security and prevent unauthorized access. It is one of the crucial steps in the organization’s infrastructure security. Keeping the Server hardened can not only prevent the external threats but, also it can prevent the internal threats. Depending upon the type of server’s operating system the checklist might vary.

Linux Server Hardening

Everybody says that Linux is secure by default and we agree to some extent. However, Linux has in-built security model in place by default. But, we need to tune it up and customize as per our need which may help to make it more secure system.Below are some of the all categories, that we focus on when securing a Linux Server

  • Kernel-Level Hardening
  • FTP Server Hardening
  • SSH Hardening
  • File and Directory permissions Audit
  • Checking Unnecessary services
  • Enabling SELinux
  • Checking Password Policies
  • Software Repository Hardening
  • Enabling and Configuring Firewall
  • Disable Remote Root Access

Patching/Removing Third Party Applications

Windows Server Hardening

Windows Server Hardening involves identifying and remediating security vulnerabilities. Below are some of the all categories, that we focus on when securing a Windows Server:

  • Network configuration
  • Update Installation
  • Remote Desktop Protocol Hardening
  • Windows Registry Key Hardening
  • Firewall Audit and Configuration
  • File System Permission Audit
  • Anti-Virus Configuration
  • Group Policies Hardening
  • Logging and Monitoring
  • NTP Configuration
  • Service Configuration