Werner Puschitz has published an article on securing Linux on production environments. It talks about simple things like stopping unneeded services and also covers more advanced subjects like configuring specialized PAM authentication techniques like locking down a users account during certain times of the day or number of failed logins. Pretty useful article for anyone configuring Linux machines and making sure they are safe.