Security Hardening
Hello
I am asked to apply the following on a server that connects to the internet, but could not find relevant information on RHEL 7.4
yum-utils Package-cleanup-leaves
to remove unused packages without affecting the packages dependencies
disable FTP,Telnet, Rlogin/RSH, ipchains, portmap, nfslock, netfs, autofs, apmd, isdn, pppoe, Sendmail, Gpm, anacron, and X windows
Disable .rhosts Files
Locking User Accounts after 5 Login Failures
Lock all accounts with empty password
Disable root account
Non-Root Accounts do not have UID set to 0
Only Use SSH Protocol 2
Configure Idle Log Out Timeout Interval [ClientAliveInterval 300 ClientAliveCountMax 0]
Disable .rhosts Files
Turn off IP forwarding
Disallow source routing
The server should not accept the source routed packets to prevent unauthorized traffic redirection. Ensure that routed is not installed