<html><head><style type='text/css'>p { margin: 0; }</style></head><body><div style='font-family: Times New Roman; font-size: 12pt; color: #000000'>Hi all,<br><br>I recently acquired a Compaq CL380 that I'm currently upgrading and making to a couple of servers, (I think two people may know from where I acquired this server *looks at Chris and Dave*).<br><br>Anyway, <br>As I'm intending to install Ubuntu Server Edition (and strip it down more), I'm currently looking into improve the security on my servers, and hoping you guys could help a smidge.<br><br>Are things like SELinux worthwhile? Or can the same effect be achieved by hand per process? (would take an eon I know)<br><br>Are there any good resources for securing Linux? I found a few that I'm going through but they aren't that great to be honest.<br><br>Last question, How would I go about droping connections or temporarily blocking an IP based on if they access so many ports in a short time (ie if someone tries to portscan how would I detect it and drop and future packets from that IP for a while?)<br><br><div><br>Regards, <br><br>Simon C. Burke<br><br>E-mail: <a href="http://mailto://simon@geek-web.co.uk">Simon@geek-web.co.uk</a><br></div></div></body></html>