I looked up machine hardening and security and found out about Bastille.
I checked my Synaptic Package Manager and the application is not in there.
So it appears that I can download it from here:
The instructions are a bit much for me.
Do I follow the terminal instructions or do I go to the Debian site?Code:
- First, install the Bastille RPM, like so: rpm -ivh Bastille-3.2.1-0.1.noarch.rpm
- Second, if you want to use Hardening mode, you'll need to install perl-Tk (for our Graphical Interface) or perl-Curses (for console/text mode). (Installing perl-Tk/perl-Curses isn't necessary in Assessment mode, as it generates a report in both HTML and Text.) You can usually do this most easily by getting the RPM shown in this table, installing it via this command: rpm -ivh perl-Tk-a.b-c.i386.rpm or rpm -ivh perl-Curses-d.e-f.i386.rpm Alternatively, you can install these using the CPAN method, described here.
- Third, run the bastille command: bastille -x (for Graphical Mode Hardening) or bastille -c (for Text Mode Hardening) or bastille --report (for Assessment and Reporting)
- NOTE: Just because you're su-ing or ssh-ing into a system doesn't mean you're stuck in text mode. You can use graphical (X) programs like Bastille's Tk interface or browsers by forwarding your X connections over the ssh connection. It's very, very simple. Just do this: ssh -X root@remote_box (when you were already SSH-ing) OR ssh -X email@example.com (when you would normally just su)
Any advice would be a great help as I'm not sure how to proceed.