Explicitly enable the Centos 7 firewall

As usual, Digital Ocean boxes ship with insecure defaults, contrary to a basic installation from an official ISO.

Explicitly enable the Centos 7 firewall
As usual, Digital Ocean boxes ship with insecure defaults, contrary to a basic installation from an official ISO.
Jacob Vosmaer
1 parent c720190f
Showing 1 changed file with 3 additions and 1 deletions Show diff stats
doc/build.md
@@ -101,7 +101,9 @@ As an administrator (or root):
 ```
 yum update
  
-# Firewall is OK by default??
+sudo systemctl enable firewalld
+sudo systemctl start firewalld
+sudo firewall-cmd --list-all
  
 # Check for SSH password logins; they should be disabled
 grep '^[^#]*PasswordAuthentication' /etc/ssh/sshd_config
...	...	@@ -101,7 +101,9 @@ As an administrator (or root):
101	101	```
102	102	yum update
103	103
104		-# Firewall is OK by default??
	104	+sudo systemctl enable firewalld
	105	+sudo systemctl start firewalld
	106	+sudo firewall-cmd --list-all
105	107
106	108	# Check for SSH password logins; they should be disabled
107	109	grep '^[^#]*PasswordAuthentication' /etc/ssh/sshd_config
...	...