Facing issues while hardening the security of my Ubuntu droplet

Question

Hey,

I’m a newbie here and facing a couple issue with my droplet. Wanted to harden the security of my Ubuntu droplet but facing some issues. Googled a lot but can’t see any solution of these problems. Any suggestion on how to fix these?

1.) How can I update OWASP modsecurity core rule set? Right now I am using 2.2.4 and the latest version is 2.2.9 (https://github.com/SpiderLabs/owasp-modsecurity-crs)

2) I have installed mod_security. When I add the new symlinks to apache ’/etc/apache2/mods-available/security2.conf" I get the following error:

Job for apache2.service failed because the control process exited with error code. See “systemctl status apache2.service” and “journalctl -xe” for details.

When I comment the line line –> Include “/etc/modsecurity/activated_rules/*.conf”
Apache starts working again.

3) In /etc/sysctl.conf when I add these rules

Disable source packet routing

net.ipv4.conf.all.acceptsourceroute = 0
net.ipv6.conf.all.acceptsourceroute = 0

Log Martians

net.ipv4.icmpignoreboguserrorresponses = 1

and reloaded the new rules by “sudo service procps start”

I get the following error after running “sysctl -p”

sysctl: cannot stat /proc/sys/net/ipv4/conf/default/acceptsourceroute: No such file or directory
sysctl: cannot stat /proc/sys/net/ipv6/conf/default/acceptsourceroute: No such file or directory
sysctl: cannot stat /proc/sys/net/ipv4/icmpignoreboguserrorresponses: No such file or directory

Answer 1

notnormalbrain April 24, 2016

Hi,

I faced the same isseu with /proc/sys/net/ipv4/conf/default/acceptsourceroute and /proc/sys/net/ipv6/conf/default/acceptsourceroute.

Did you found a solution for it yet?

Regards…

Reply Report

sdfzty2 April 24, 2016

Nope but checked the files are there.
Reply Report
- notnormalbrain April 24, 2016
  
  I got it! :-D
  
  Very simple. You did copy from Odd Random thoughts Hardening guide?
  
  edit both files again and delete these lines complete and add them manuelly again. Take the one line above and under as well!
  
  There is some kind of hidden character if you cut n paste from the webside.
  
  regards,
  
  Reply Report
  
  sdfzty2 April 24, 2016
  
  Yup, it did work, thanks!
  
  Reply Report

Answer 2

sdfzty2 April 24, 2016

Nope but checked the files are there.
Reply Report
- notnormalbrain April 24, 2016
  
  I got it! :-D
  
  Very simple. You did copy from Odd Random thoughts Hardening guide?
  
  edit both files again and delete these lines complete and add them manuelly again. Take the one line above and under as well!
  
  There is some kind of hidden character if you cut n paste from the webside.
  
  regards,
  
  Reply Report
  
  sdfzty2 April 24, 2016
  
  Yup, it did work, thanks!
  
  Reply Report

Related

Question

Facing issues while hardening the security of my Ubuntu droplet

Disable source packet routing

Log Martians

Related

Leave a comment

Looking for something else?

Sign up for our newsletter

Related

Question

Facing issues while hardening the security of my Ubuntu droplet

Disable source packet routing

Log Martians

Related

Leave a comment

Related

question

Hacking attempt fixed with Fail2Ban, but high memory usage remains

question

SSL Certificate causing warnings in error.log and not working properly. https// does not work.

question

How to install an ssl certificate from Rapid ssl authority in Ubuntu 14 for magento?

question

How to install SSL for my website?

Looking for something else?