Security Hardening

Hello

I am asked to apply the following on a server that connects to the internet, but could not find relevant information on RHEL 7.4

yum-utils Package-cleanup-leaves
to remove unused packages without affecting the packages dependencies

disable FTP,Telnet, Rlogin/RSH, ipchains, portmap, nfslock, netfs, autofs, apmd, isdn, pppoe, Sendmail, Gpm, anacron, and X windows
Disable .rhosts Files

Locking User Accounts after 5 Login Failures
Lock all accounts with empty password
Disable root account
Non-Root Accounts do not have UID set to 0

Only Use SSH Protocol 2
Configure Idle Log Out Timeout Interval [ClientAliveInterval 300 ClientAliveCountMax 0]
Disable .rhosts Files
Turn off IP forwarding

Disallow source routing
The server should not accept the source routed packets to prevent unauthorized traffic redirection. Ensure that routed is not installed