Commit 2725ff6b7289f0d0b0858922aadc738a5b82b549
1 parent
c720190f
Exists in
master
Explicitly enable the Centos 7 firewall
As usual, Digital Ocean boxes ship with insecure defaults, contrary to a basic installation from an official ISO.
Showing
1 changed file
with
3 additions
and
1 deletions
Show diff stats
doc/build.md
| @@ -101,7 +101,9 @@ As an administrator (or root): | @@ -101,7 +101,9 @@ As an administrator (or root): | ||
| 101 | ``` | 101 | ``` |
| 102 | yum update | 102 | yum update |
| 103 | 103 | ||
| 104 | -# Firewall is OK by default?? | 104 | +sudo systemctl enable firewalld |
| 105 | +sudo systemctl start firewalld | ||
| 106 | +sudo firewall-cmd --list-all | ||
| 105 | 107 | ||
| 106 | # Check for SSH password logins; they should be disabled | 108 | # Check for SSH password logins; they should be disabled |
| 107 | grep '^[^#]*PasswordAuthentication' /etc/ssh/sshd_config | 109 | grep '^[^#]*PasswordAuthentication' /etc/ssh/sshd_config |