Implementación de hardening en sistemas operativos de servidor : Implementación de hardening en Rocky Linux con CIS.

Abstract

The thesis project presented is about the hardening of the Rocky Linux 8.9 operating system, this process seeks to improve the security of computer systems. Thus, the objective is to find vulnerabilities, find security holes and correct these flaws to generate a system less susceptible to different external attacks. In order to work on this thesis, the CIS security recommendations that are important for cybersecurity are taken into account. In the first section of the work, the characteristics to be achieved, the existing problem and the concepts necessary to understand the challenge to be solved as well as its resolution are shown. The general and specific objectives, the theoretical framework that is essential to define the tools to be used and the scope of the thesis are presented. In this section, the security standards, operating system and working instruments to execute the hardening process are defined. The next section defines the process necessary to achieve the general objective and the specific objectives, it is the explanation of the methodology to be used in the whole process. Part three is intended for the demonstration of the results generated in the course of the work, and an analysis of the product resulting from the executed actions is also provided. The aspects involved in this item are the installation of the Rocky Linux 8.9 operating system, the installation of the mail service, the installation of OPENSCAP as a security hole scanning tool and the different results it provides. In addition, a series of recommended actions in cybersecurity is presented. Finally, the last part delivers conclusions based on the established objectives, recommendations of the project and the bibliography used in the thesis topic.