I really need to sit down and do some research on Linux System Hardening, as I really want to take a look at any kernel hardening that can be done on the system. i.e. I don’t want users to be able to see who else is on the machine via the output of commands like ‘w’ and ‘who’. I remember grsecurity use to be available to do this, so I should look around to see if this is still valid or do we do it another one.
I did find the following web post about SSH hardening which I enjoyed reading here.
If you’ve done Linux System Hardening recently, chime in on the comments with your experience.