How to install Linux Environment Security (LES)
This post helps you to install Linux Environment Security (LES) on RPM-based Linux distributions. Linux Environment Security is used to secure RedHat/RPM-based environments. It is accomplished by enforcing root-only permissions on system binaries so the normal users can’t able to execute the binaries.
Also, it is securing the server by following actions:
1. Enforcing root-only path traversal on system paths
2. Enforcing immutable bit on essential rpm package contents (i.e: coreutils)
3. Enforcing immutable bit on shell profile scripts.
cd /usr/local/src wget http://www.r-fx.ca/downloads/les-current.tar.gz tar -zxvf les-current.tar.gz cd les-0.* ./install.sh
Please check the options and usage below:
usage: /usr/local/sbin/les [option] [off/on;0/1]
-da | --disable-all Disable all options -ea | --enable-all Enable all options -sb | --secure-bin Set root only execution of critical binaries -sp | --secure-path Set root only traversal of critical paths -sr | --secure-rpmpkg Set immutable on core rpm package binaries -so | --secure-prof Set immutable on interactive login profiles -sd | --secure-devel Set access to devel utils for group deva & root
For more details click here
If you like this post and wish to receive more articles from us, please like our FB page: Grepitout
Your suggestions and feedbacks will encourage us and help to improve further, please feel free to write your comments.
For more details on our services, please drop us an E-mail at firstname.lastname@example.org