wiki

User Tools

Site Tools

Trace: tempo
linux:tempo

This is an old revision of the document!

  • Splunkforwarder doc

https://docs.splunk.com/Documentation/Splunk/9.1.1/Admin/RunSplunkassystemdservice

hardening 

# cat /etc/fstab

/dev/mapper/vg_root-lv_home /home xfs defaults,nosuid,nodev 0 2
/dev/mapper/vg_root-lv_tmp /tmp xfs defaults,nosuid,noexec,nodev 0 2
/dev/mapper/vg_root-lv_var /var xfs defaults,nosuid,nodev 0 2
/dev/mapper/vg_root-lv_var_log /var/log xfs defaults,nosuid,noexec,nodev 0 2
/tmp /var/tmp none rw,noexec,nosuid,nodev,bind 0 0
tmpfs /dev/shm tmpfs rw,nodev,noexec,nosuid 0 0
# cat /etc/ssh/sshd_config
...
AllowUsers *                  
AllowGroups *                 
DenyUsers nobody              
DenyGroups ftpusers monitor   

kexalgorithms curve25519-sha256,curve25519-sha256@libssh.org,ecdh-sha2-nistp256,ecdh-sha2-nistp384,ecdh-sha2-nistp521,diffie-hellman-group-exchange-sha256,diffie-hellman-group16-sha512,diffie-hellman-group18-sha512,diffie-hellman-group14-sha256    # CIS Control id 14400

integration AD 

# authconfig --enablecachecreds --enableldap --enableldaptls --enableldapauth --ldapserver=ldaps://adldap1.lu --ldapbasedn=dc=bdl,dc=tst --disablenis --disablekrb5 --enableshadow --enablemkhomedir --enablelocauthorize --passalgo=sha512 --updateall
linux/tempo.1697525773.txt.gz · Last modified: 2023/10/17 08:56 by manu

Page Tools

Except where otherwise noted, content on this wiki is licensed under the following license: GNU Free Documentation License 1.3
GNU Free Documentation License 1.3 Donate Powered by PHP Valid HTML5 Valid CSS Driven by DokuWiki