Question

3

Is Ubuntu security enough?

rated 0 times [ 3] [ 0] / answers: 1 / hits: 1275 / 3 Years ago, thu, september 9, 2021, 7:25:46

I work with sensible data, so I need a reasonable level of security and use Ubuntu as main operative system in a professional activity.

I have developed a php platform that performs some sensible operations with AES and RSA, so I need to have a local web server.

Does it break system security? Which fixes may I apply?

And, more in general, are Ubuntu default setting safe enough?

Answers

Only authorized users can answer the question. Please sign in first, or register a free account.

whipstder

Add To Favorites

Follow

Total Points: 189

Total Questions: 110

Total Answers: 99

Location: Uzbekistan

Member since Sat, Feb 27, 2021

3 Years ago

answered 3 Years ago looweets · Accepted Answer

If you are classifying your system as a high-value asset, I would say the defaults are not sufficient. I would recommend downloading and reading the CIS benchmarks for Debian and Apache and implementing the hardening recommendations. More specifically out of the box 'root' logins are permitted with SSH server which is truly stupid. Attached is a link to the site where you can download them.

http://benchmarks.cisecurity.org/en-us/?route=downloads.benchmarks