Member-only story
Why You Should Never Trust Default Configurations on a Fresh Linux Install
--
1
Share
Intro
Many admins assume a fresh install of Ubuntu or Red Hat is secure out of the box. I used to think the same โ until I realized how much was silently exposed. Default configurations are designed for usability, not security. In this blog, Iโll show you what I now check and lock down immediately after every Linux install.
1. Unnecessary Services Are Running
Fresh installs often start services you donโt need โ like Bluetooth, cups, or even Avahi (zeroconf).
๐ Check:
sudo systemctl list-units --type=service --state=running
๐ ๏ธ Fix:
sudo systemctl disable --now avahi-daemonsudo systemctl disable --now cups
2. SSH Is Too Open
On Ubuntu, SSH is often enabled โ even if you didnโt configure it.
๐ Check:
sudo systemctl status ssh
๐ ๏ธ Fix:
# Only allow your IPsudo ufw allow from <your_ip> to any port 22
# Disable root login and password authsudo nano /etc/ssh/sshd_config# Set:PermitRootLogin no PasswordAuthentication no
Top comments (0)