So here's the question. What kind of things should I do with a naked Mandrake installation to properly secure it?From the perspective of the network, find out what services you are offering using netstat -l (or lsof -i TCP and lsof -i UDP). Close the ones you don't want (other people are mentioning GUI control center) and check it worked, also check they don't come back after a reboot.
For example, many lpr installations leave a network listener active, and lots of machines have a portmapper running, I guess in case you ever fancied trying NFS.
If you can run nmap from an external location, try that to make sure you're locked down the way you think you are.
For the services that you do run, make sure that they're not offering services with holes - for example, while apache is commonly regarded as trustworthy, many large PHP packages have glaring holes in them.
-jim
