DEBIAN LINUX HARDENING
Intro
This is intended to be short and efficient.
This HOWTO QUICKIE picks up where the HOWTO QUICKIE: Post Install left off.
It is suggested to do this "remotely" via ssh, if anything, for the copy & paste abilities. Putty does the trick for those in Windows.
Per Debian
Begin
# Login with the new user (not root)
su -
# Enter the root password
APT remove
The following are most likely not needed. If you are using a mobile device, or if you use ppp or such, you may want to reconsider some of these.
apt-get remove lpr nfs-common portmap pidentd pcmcia-cs pppoe pppoeconf ppp pppconfig
Update-rc.d & Update-inetd
update-rc.d -f exim remove
update-inetd --remove daytime
update-inetd --remove telnet
update-inetd --remove time
update-inetd --remove finger
update-inetd --remove talk
update-inetd --remove ntalk
update-inetd --remove ftp
update-inetd --remove discard
# If prompted, Yes. I have never been prompted.
/etc/init.d/openbsd-inetd reload
A WHOLE LOT MORE
This is not a complete method or list for hardening a new Debian install. However, this is a starting point towards running a more efficient and secure system.