Hardening scripts for BSD. There should be a DragonFly-specific one eventually.
2 Replies to “BSD hardening scripts”
Comments are closed.
A running description of activity related to DragonFly BSD.
A running description of activity related to DragonFly BSD.
Hardening scripts for BSD. There should be a DragonFly-specific one eventually.
Comments are closed.
Are there scripts for OpenBSD because it’s so secure by default?
Well, when I first started by BSD journey some months back I used OpenBSD for my Website, DNS, and Email server. It was then I wrote my first Python script out of a need to block the thousands of SSH attempts per hour until I could learn my Hosts firewall application rules and pick a safe port, etc.
So, I have a unique OpenBSD authlog script that parses against a whitelist and will hot reload pf tables with anyone un-authorized for SSH. It also configures the a robust multi-homed Firewall pf.conf to block all Vulnerability Scanners and Bad Robots.
In addition, I made a GoAcess Web Stats Analyzer configurator for OpenBSD, auto-configures ASN data, allows UptimeRobot and UpDown.io http monitoring through the firewall and is themed in OpenBSD colors.