Implementación de hardening en sistemas operativos de servidor : implemementación de hardening en sistemas operativos de servidor linux de base debian .

Abstract

The present project of curricular integration work consists of in to implement the hardening process in the Debian-based Linux server operating systems in Ubuntu server 20.04, with the objective to implement a security police in system on the CIS frame of reference and in this form secure server operating system, significantly to reduce the attack surfaces, decreasing the points where an attacker can infiltrate. The first section consists in the implementation of a mail server Postfix while Squirrelmail. It´s installed the OpenSCAP tools for the run server vulnerability analysis with the objective obtained the first report. The second section consists of in to aggregate the security policies automatically based on the CIS frame of reference in the server operating system Ubuntu Server 20.04, after that the security policy is applied, the Postfix mail server is lifted while Squirrelmail, its installed all OpenSCAP tools for scanning and obtained the second operating system vulnerability report. The third section consists in the analysis of emitted reports, where it´s observed that implanted the policy to reduce the vulnerabilities in the server, also to resolve two parameters manually, with in the order to improve the server hardening and obtaining a report three. The fourth section consists in the analysis of third report, verified the impact have implemented a security policy on each element to the CIA triad. Finally, it’s obtained the conclusion and recommendations in base to the development and analysis this present project.