wiki.ipfire.org

The community-maintained documentation platform of IPFire

User Tools

Site Tools


optimization:start:security_hardening

IPFire Security Hardening Guide

Introduction

IPFire is designed to be secure by default, however it can be further hardened so that it is even more difficult to attack. Hardening includes;

  1. and Reducing Attack Surface by disabling features which are not in use.

Please discuss changes to this guide in this post in the forum.


Implementation Scale

As a guide for new readers, this guide uses two scales:

Security benefit (impact)A. MAJORB. SIGNIFICANTC. MINOR
Effort to implement1. LOW2. MEDIUM3. HIGH

This scale is subjective. It will differ based on the value of your data to an attacker as well as your technical skill or previous experience. It aims give an indication of both the benefit of doing an item and the approximate effort required.

Scale examples

For example, items which are categorised

ImpactEffort
A. MAJOR 1. LOW

are highly recommended, as they are both easy to implement and have a high security benefit.

While items which are

ImpactEffort
C. MINOR3. HIGH

will be helpful, but need only done for a high-risk environment or if you are a bit paranoid!


Next Page: Good Security Practice

optimization/start/security_hardening.txt · Last modified: 2019/06/16 10:49 by dnl