Unix Build Review

Typical Considerations

• Database Passwords in Configuration Files
• Default/Preset Database Passwords
• Weak Permissions on Application Data
• Configuration, Patching and Auditing

Whilst Linux operating systems may have many different variations, the fundamental security architecture is applicable to all of the main Linux distributions in use by an Enterprise, and a build review assesses the server's resilience to several scenarios:

• Direct attack over the network (against a service it hosts)
• Indirect attack (against one of its external/network dependencies)
• Local privilege escalation or abuse of privilege

It is common to find that a standard server build exists, but that applications loaded onto the server often alter its configuration. MDSec's consultants have seen numerous server installations and can advise on not only on the industry standards for Solaris, HPUX or Linux servers, but also the best practices in service usage.