Linux, networking and security
Answer these quetions
SSH and Telnet both provide a user with the ability to remotely connect to a system. Why should Telnet be disabled in favor of SSH? What steps are required to completely disable Telnet and enable SSH? In what scenarios would a VNC server be preferred over SSH or Telnet?
. Navigate back to your VM session and complete the following tasks:
a. yum install dhcp
i. Type y to confirm the installation
b. vim /etc/dhcp/dhcpd.conf
i. Use the appropriate commands to add the following information to the file:
default-lease-time 72000;
option routers 192.168.1.1;
option domain-name-servers 192.168.1.1;
subnet 255.255.255.0 {
range 192.168.1.50 192.168.1.100;
}
ii. Use the appropriate commands to save and quit the editor
c. useradd -m dhcpd
i. Creates a user account for the DHCPdaemon
d. systemctl start dhcpd.service
e. ps -ef | grep dhcpd
i. Ensure the daemon loaded successfully
f. firewall-cmd –add-service dhcp
g. cat /var/lib/dhcpd/dhcpd.leases
i. This file would show any current leases
h. systemctl stop dhcpd.service
i. yum install system-config-bind
i. Type y to confirm the installation
j. system-config-bind&
i. Type y when prompted
k. Select DNS Server and click Properties
i. Add the forwarders option to the Current Options box
ii. In the New List Element section, highlight IPV4 Address and use 192.168.1.1 as the
DNS server address
iii. Click OK when finished
iv. Click New, Zone, and select Internet then click OK
v. Click OK to accept Forward as the default zone type
vi. Use class.com. as the zone name (be sure to include the . at the end of com)
vii. Select Master as the role and click OK
viii. Click OK one more time to go back to the main BIND window
l. systemctl start named.service
m. dig @localhost class.com any
i. Did you receive the correct DNS information?
n. less /etc/chrony.conf
o. chronyc sources -v
i. Is your system configured as a NTP client?
ii. What servers are you synchronizing with?
p. yum install httpd elinks
i. Type y to confirm the installation q. systemctl start httpd.service r. firewall-cmd –add-service http s.elinks http://127.0.0.1/
i. Did the test page load successfully?
7. Leave your VM session open as you answer the following question.
***Required Question 3: NetworkServices
The previous tasks showed you how to install and perform basic configurations for a variety of network services. For SMB Company, decide what services you will be providing to your client systems andwhat services will be required to support the business. For each service, identify and describe the package you selected (for example, BIND for DNS, Apache for web services, etc.). Then, detail the configurations you will make for each service.
Networking and security are two items that go hand-in-hand – anytime you open a system up to outside connectivity, you need to properly secure that system. Based on the services you selected for SMB Company in this project, describe the security configurations you will make for each service and what vulnerabilities they will address