http://www.puschitz.com/SecuringLinux.shtml