Best Security software for web servers.

Discussion in 'Security' started by Hostingder, Dec 24, 2011.

  1. #1
    I have a couple of dedicated servers and I would like to protect them much as I can from hackers, DDOS, and etc... Right now all the protection I have is a Firewall "CSF" what else could I possibly do to protect my servers, I don't wanna pay monthly for such a service I would be willing to pay for the software once but not monthly payments..

    I would appreciate all the tips and help.

    Thanks,
    Richard.
     
    Hostingder, Dec 24, 2011 IP
  2. ideamine

    ideamine Member

    Messages:
    83
    Likes Received:
    2
    Best Answers:
    2
    Trophy Points:
    28
    #2
    CSF is a good firewall .. Also configure TCP wrappers to enhance security :)
     
    ideamine, Dec 24, 2011 IP
  3. Hostingder

    Hostingder Peon

    Messages:
    251
    Likes Received:
    4
    Best Answers:
    0
    Trophy Points:
    0
    #3
    Hi, thanks for the reply. Can you give me a little more information on this TCP Wrappers, what is it, and what does it do?
     
    Hostingder, Dec 24, 2011 IP
  4. ezbnc

    ezbnc Peon

    Messages:
    168
    Likes Received:
    3
    Best Answers:
    0
    Trophy Points:
    0
    #4
    With CSF and BFD you will be more secure totally secure disconnect internet.
     
    ezbnc, Dec 24, 2011 IP
  5. Hostingder

    Hostingder Peon

    Messages:
    251
    Likes Received:
    4
    Best Answers:
    0
    Trophy Points:
    0
    #5
    LOL, thanks but you guys aren't giving me much details about these programs :p
     
    Hostingder, Dec 24, 2011 IP
  6. sandeep002

    sandeep002 Peon

    Messages:
    9
    Likes Received:
    0
    Best Answers:
    0
    Trophy Points:
    0
    #6
    Simply install any one of the following

    NetScaler NS9.3 Build
    DenyAll: rweb 4.0 - core manager
    F5: ASM 3900
    Imperva: SecureSphere 8.0
    Trustwave Modsecurity 2.6.2
    SourceFire: SourceFire 3d Sensor 2100 -4.9.1.6 buld 150
    unamed IPS

    Check daily log activity
     
    sandeep002, Dec 26, 2011 IP
  7. tweakservers

    tweakservers Peon

    Messages:
    10
    Likes Received:
    0
    Best Answers:
    0
    Trophy Points:
    0
    #7
    security is an on-going process, it does not means once you have the security software installed it will protect you 100%. Make sure to keep your software up-to-date (Wordpress,CMS..etc) and kernel updated to the latest version, screening your log frequently for abnormal activity. Certain security software (such as CSF) can protect you up to certain level, for large scale of DDOS, it will not help and it will have to goes back to your upstream (your hosting provider)..
     
    tweakservers, Dec 26, 2011 IP
  8. kokopelli

    kokopelli Peon

    Messages:
    2,436
    Likes Received:
    29
    Best Answers:
    0
    Trophy Points:
    0
    #8
    Install mod_security
     
    kokopelli, Dec 27, 2011 IP
  9. Hostingder

    Hostingder Peon

    Messages:
    251
    Likes Received:
    4
    Best Answers:
    0
    Trophy Points:
    0
    #9
    Hi, thanks for the tip. What is mod_security? where do I download it from?
     
    Hostingder, Dec 28, 2011 IP
  10. PISG

    PISG Member

    Messages:
    16
    Likes Received:
    0
    Best Answers:
    0
    Trophy Points:
    31
    #10
    Just google for mod_security. If you have cPanel, you don't need install it by manually. This option/module can be enabled from easyapache interface.
     
    PISG, Dec 28, 2011 IP