Gimp? On a production server? isn't gimp strictly an end user product run via a gui?

I'm not aware of anything that would need gimp installed on a server.

It really depends on what sort of stuff you will be running (I agree that GIMP on a production server seems a bit odd), but I've always found that a fresh update of CPAN (

perl -e 'install Bundle::CPAN'

) and a flawless installation of yum/apt with a few decent, frequently updated repositories are good ideas.

Also, you'll want to make sure your security/IDS programs are up to date before you get too far in the setup process. Consider using Bastille, portsentry and hostsentry and logcheck, chkrootkit and snort, among others.

Gimp sounds odd I know, we call up some of it's functions for something thats all.

Cpan bundle is on too, thanks for the other pointers I'll have a look into them. We have the servers configured behind firewalls anyway so from a security point of view they'll be tight! I've learnt the hard way in the past!

Firewalls are nice, but by themselves they do not make your system(s) secure. Don't learn another tough lesson by not securing the box as much as you can, too.

I suggested securing the box before you get too far along in the server setup because a truly tight box will need some special stuff to get some programs working properly, and you'll want to have your permissions policies in place as soon as possible so you can work out all that must be done.