Green Rocket Security understands that GreenRADIUS servers are to be deployed into exposed environments and that this means the servers must be hardened against potential attacks. As a security vendor, Green Rocket Security continually monitors both vulnerability reports and the latest techniques in system hardening, providing updates to our customers to ensure their systems are as secure as possible.
The GreenRADIUS virtual machine is hardened following security best practices as outlined by CIS Security Benchmarks for Linux servers. This guide can be found at https://benchmarks.cisecurity.org.
Following this guidance, unnecessary services have been disabled, leaving only what is absolutely necessary for GreenRADIUS to provide its services (as detailed below).
GreenRADIUS is configured to restrict inbound network access to only those services which are absolutely necessary for the functionality of the server. The following ports are open by default: