Does anyone have experience with Bastille-Linux? A linux security hardening tool available at: http://bastille-linux.org/

It runs in report mode for educational purposes or manual mode to harden the system one step at a time.

It looks good. I'm trying it on my new Layered-Tech dedicated server.

fos....

I used it a long time ago when it was bundled with Mandrake, but have not used it since then. It was good back then. Asked lots of questions, but explained what they meant so inexperienced people would learn something about the process.
From what I remember, it is a Perl script that will adjust application settings and configure iptables, so it is only run once and not a standalong application by itself. Perhaps you could write a more in-depth review of it?

Bastille Linux is a perl script. There is little documentation at the site other than a faq and a "running on" section for each distro.

In the report only mode it rates the security of you server with a 10 being most secure. My home based CentOS was rated 5.5 and the new server at Layered Tech was rated 8.75.

As Uteck mentioned, it will modify the config files for the various services interactively to make them more secure. The process is well commented to help with the configuration.

I have only run the report mode at this time. When I actually go through the process, I will give a more detailed review along with the results as I progress.

BTW, Spider Tools offers a two week Linux Server Security course based on Bastille Linux for $95.

fos....