this post was submitted on 15 Apr 2024
656 points (95.2% liked)
linuxmemes
21281 readers
884 users here now
Hint: :q!
Sister communities:
Community rules (click to expand)
1. Follow the site-wide rules
- Instance-wide TOS: https://legal.lemmy.world/tos/
- Lemmy code of conduct: https://join-lemmy.org/docs/code_of_conduct.html
2. Be civil
- Understand the difference between a joke and an insult.
- Do not harrass or attack members of the community for any reason.
- Leave remarks of "peasantry" to the PCMR community. If you dislike an OS/service/application, attack the thing you dislike, not the individuals who use it. Some people may not have a choice.
- Bigotry will not be tolerated.
- These rules are somewhat loosened when the subject is a public figure. Still, do not attack their person or incite harrassment.
3. Post Linux-related content
- Including Unix and BSD.
- Non-Linux content is acceptable as long as it makes a reference to Linux. For example, the poorly made mockery of
sudo
in Windows.
- No porn. Even if you watch it on a Linux machine.
4. No recent reposts
- Everybody uses Arch btw, can't quit Vim, and wants to interject for a moment. You can stop now.
Please report posts and comments that break these rules!
Important: never execute code or follow advice that you don't understand or can't verify, especially here. The word of the day is credibility. This is a meme community -- even the most helpful comments might just be shitposts that can damage your system. Be aware, be smart, don't fork-bomb your computer.
founded 1 year ago
MODERATORS
That isn't true at all.
Source: My job is hardening Linux servers against cyber security threats.
Hardening a server is not the same thing as running vulnerable operating systems.
According to NIST it is:
You have to harden servers because they're vulnerable.
That's because of the function of a server running those services. A desktop isn't running services.
Desktops absolutely run services that can be vulnerable.
I think desktop Linux was implied. You don't browse porn from servers. Mostly.
Tf does the "mostly" mean??
Because you CAN browse porn from server.
At my job we are looking to use a hardened ubuntu image but not sure what to pick. Got any recommendations?
Are you guys using an AMI, or is this for physical servers? The NEMU images for RHEL on AWS are pretty solid, although I'm working on building one from scratch for our move to RHEL9
We are using an AMI on aws for Ubuntu right now. We need to stick to Ubuntu also since our product is tested on that distribution and so on. What about hardened Ubuntus?
I belive that they have hardened Ubuntu images as well.
Does it have to be Ubuntu, or would Debian be fine? If Debian is fine, check out KickSecure.