Host Hardening often goes hand in hand with intrusion detection and is an important part of building a secure information security architecture. It is of course most important when it comes to public facing or Internet enabled servers such as e-mail, web or DNS servers.
Security should always consist or multi-tiered, multi-layered hardened solutions, the outside consisting of perimeter devices such as routers, firewalls and proxies and the interior with intrusion detection systems.
Just like its name suggests, the main function of host hardening is to harden the key servers within your environment. The host hardening takes place to ensure the confidentiality and integrity of your systems.
The host hardening process starts with a requirements evaluation to see what the server is for and to assess the risks involved, as always security is a balance between ultimate security and usability. The more secure something is, by nature the less usable it becomes.
The main benefits of Host Hardening are: