- Update installed port if it's vulnerable through portaudit and portupgrade.
- Change the default SSH port 22 to something higher (e.g.: 15009).
- Disable PasswordAuthentication option on SSH config file.
- Enable AuthorizedKeysFile option in SSH and generate the private key.
- Set the pf firewall and enable webjail.
Saturday, October 26, 2013
FreeBSD configuration for Web Server service
Here's the configuration that I did to my FreeBSD box to secure the Web Server:
Subscribe to:
Post Comments (Atom)
1 comment:
Actually I forgot to mention additional application in this post. Monit, SSH Guard & Snort should be installed and configured properly as well.
Post a Comment