CASE STUDIES
red hat linux security

Area of assistance: Security

Technology introduced: Bastille Linux, a comprehensive script that offers security through Q&A automation

Problem: The client uses Redhat Linux 6.1, and discovered one Monday morning that their server had been brought down over the weekend by a hacker. The systems administrator recovered from the damage sustained, and called Epoch Online to help guard against further attacks.

Analysis: It was determined that the disturbance was part of a Denial of Service attack that had plagued several other large websites over the past several months. The hacker's goal was to use the client's server to reach his real prey, another server based in California. To cover his tracks, it was necessary to incapacitate the client's server.

Strategy: We had to ensure the future safety of the server as well as others that might be affected by similar leapfrog hacks. In addition to the server being in danger, other sites were vulnerable to hackers using the client's server as an open portal. Our goal was to deny all access to the server without proper permission.

Step 1: We shadowed the OS password file so that any chance of brute-force hacking would be eliminated.

Step 2: Network-Layer Filtering was set up so that only certain IP addresses could access the server.

Step 3: A firewall was constructed so that outside access could only be made to the Apache Web Server.

Step 4: All unused ports were disabled and audit trials were performed to test the success of the operation.

Conclusion: The client's server is now secure. Not only is the client's business secure from further disruption, but other businesses are safer as well. Future hackers will have one less open window from which to gain access to other servers.

If you would like to know more about this solution or the client for whom we provided it, please contact us.