This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
ABOUT CHECKMATES CYBER SECURITY COMMUNITY & FAQ
Create a Post
Help
cancel
Turn on suggestions
Showing results for 
Search instead for 
Did you mean: 

Are you a member of CheckMates?

×
Sign in with your Check Point UserCenter/PartnerMap account to access more great content and get a chance to win some Apple AirPods! If you don't have an account, create one now for free!
PhoneBoy
Admin
Admin
‎2020-11-18 07:28 PM

Gaia Hardening for R81

The document linked below describes the hardening of the Check Point Gaia operating system.
Components that are not necessary for a network security device, or that could cause security vulnerabilities, were removed.
Check Point Gaia R81 is based on Red Hat 7.6 version and the Linux kernel 3.10.0-957.
The applications removed from the operating system include X Windows, Office applications, games, and many other applications that are irrelevant to Firewall operations.
The document linked below describes the remaining packages and modifications to the system.

https://sc1.checkpoint.com/documents/R81/WebAdminGuides/EN/CP_R81_Gaia_Hardening/Topics-GAH/Gaia_Har... 

5 Replies
HeikoAnkenbrand
Champion Champion
Champion
‎2020-11-18 11:48 PM

But there are still a lot of packages missing.
For example openssl. This package has been modified by Check Point.

➜ CCSM Elite, CCME, CCTE ➜ www.checkpoint.tips
0 Kudos
Anthony_Kahwati
Collaborator
‎2021-03-11 03:42 AM
In response to HeikoAnkenbrand

I'm in this process and also using the following as reference:

https://www.cisecurity.org/cis-benchmarks/

Scroll through list for Checkpoint

Accepted internally by our security team as a valid approach.... maybe not definitive but good as a complement to any other sources.

0 Kudos
Anthony_Kahwati
Collaborator
‎2021-03-11 03:46 AM

The link target seems to have been removed.

0 Kudos
PhoneBoy
Admin
Admin
‎2021-03-11 06:02 AM
In response to Anthony_Kahwati

I updated the original post with a corrected link.

_Val_
Admin
Admin
‎2021-03-11 06:06 AM
In response to PhoneBoy

Yeah, the SK team is wreaking havoc 🙂

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

View All ≫
Upcoming Events

    CheckMates Events
    Top