Hi, first another mail:

# Harden SuSE Linux 6.0 - 7.1, Perl Script by Marc Heuse <marc@suse.de> # ^^^^^there we got it !! It *DOES* support SuSE Linux 7.1 :-)))) jup, marc announced it about ~1 week ago on the list.

ATTENTION: there seems to be a possible bug (or did i misconfigure harden_suse)?? After running harden_suse no remote login to my machine was possible. The fault can be found in /etc/hosts.deny

cat /etc/hosts.deny ALL: ALL EXCEPT localhost ^^^^^^ *UNCOMMENT* this entry, otherwise it won't be possible to log in using ssh or telnet this is imho a bad idea. harden_suse should _harden_ a suse box. This means to secure this box a little bit more. The way you should go is to permit what itsn't espeacialy allowed. So just add a sshd : yourremotehost : ALLOW to the /etc/hosts.allow to login remote to the box. This protects you a little bit against buffer overflows in deamons. If you check some security archives you'll find an exploit against sshd. But this doesn't work if you protect your sshd via tcpd wrapper ;-)

regards -- intraDAT AG http://www.intradat.com