1. Advertising
    y u no do it?

    Advertising (learn more)

    Advertise virtually anything here, with CPM banner ads, CPM email ads and CPC contextual links. You can target relevant areas of the site and show ads based on geographical location of the user if you wish.

    Starts at just $1 per CPM or $0.10 per CPC.

How to secure server

Discussion in 'Security' started by Carl29, Mar 1, 2010.

  1. #1
    Hi guys,
    I'm starting this thread after something starnge appears on my server. (I use JustHost)
    I'm more into design, so, I'm asking you to post any tips on how to secure server, (eg.: ftp connection, .htaccess, WP installations, OSC installations, Drupal,...)
    Any software you know (free or not) will be very usefull.
    Thanks
     
    Carl29, Mar 1, 2010 IP
  2. RHS-Chris

    RHS-Chris Well-Known Member

    Messages:
    1,007
    Likes Received:
    35
    Best Answers:
    10
    Trophy Points:
    150
    #2
    For a Linux server, there are many things you can do. Some of which are:

    1. Change ssh port (use keys if possible as well/allow only specific users)
    2. Disable unneeded services
    3. Install a good firewall
    4. Disable dangerous / unused PHP functions / harden your PHP
    5. Install mod_security
    6. Virus scan FTP uploads
    7. Install root kit detection
    8. Set root email to off server email account
    9. Make sure your passwords are tough to guess. This is a big one, especially for the root user, this should be a very tough password.


    This is a quick list, as there are many other things that can be done.

    Chris
     
    Last edited: Mar 1, 2010
    RHS-Chris, Mar 1, 2010 IP
  3. allinone1

    allinone1 Peon

    Messages:
    25
    Likes Received:
    0
    Best Answers:
    0
    Trophy Points:
    0
    #3
    If you don't mind could please detail these a lot more. Can you provide some intructions to how to apply them? Thanks a lot.
     
    allinone1, Mar 1, 2010 IP
  4. Carl29

    Carl29 Active Member

    Messages:
    114
    Likes Received:
    0
    Best Answers:
    0
    Trophy Points:
    51
    #4
    yeah, WE will be greatfull. :)
     
    Carl29, Mar 1, 2010 IP
  5. RHS-Chris

    RHS-Chris Well-Known Member

    Messages:
    1,007
    Likes Received:
    35
    Best Answers:
    10
    Trophy Points:
    150
    #5
    I do have some of these things listed out in my blog. Some of the listed items above do depend on what operating system / control panel you have installed as well. If you have more questions, feel free to PM me or post them.
     
    RHS-Chris, Mar 1, 2010 IP
  6. allinone1

    allinone1 Peon

    Messages:
    25
    Likes Received:
    0
    Best Answers:
    0
    Trophy Points:
    0
    #6
    Thank you very much for the link. There are many useful things. I will ask you if I run into troubles trying to install them. Thanks again for the help.
     
    allinone1, Mar 2, 2010 IP
  7. huseinbandi

    huseinbandi Well-Known Member

    Messages:
    1,060
    Likes Received:
    3
    Best Answers:
    0
    Trophy Points:
    130
    #7
    that's mean your own server made?? if yes, you can patch your sistem, using high qulity router.. i suggest you use belkin. and for software..you can use bee trap for redirecting for phiser.

    for more information & referense,visit us at:
    http://superhacker.org

    regards!
     
    huseinbandi, Mar 2, 2010 IP
  8. Carl29

    Carl29 Active Member

    Messages:
    114
    Likes Received:
    0
    Best Answers:
    0
    Trophy Points:
    51
    #8
    no, it's not my own server. Shared one.
     
    Carl29, Mar 2, 2010 IP
  9. RHS-Chris

    RHS-Chris Well-Known Member

    Messages:
    1,007
    Likes Received:
    35
    Best Answers:
    10
    Trophy Points:
    150
    #9
    I guess I misunderstood your original post. Most of my answers above were geared towards you having control over the server. From a shared hosting perspective, some of the things that I recommend doing are:

    1. Make sure your passwords are strong. This goes for your main account password, to any password that you use within your site to access sensitive areas.
    2. Protect your administration folders with .htaccess authorization. You can do this through IP protection, or, having another user name / password combination to gain access to the folder itself. This is a quick overview here.
    3. Depending on your hosts setup (suphp, suexec), you may want to check permissions on your files and folders, to ensure that no one else is able to read them.
    4. Review your sites logs. Look through the web and ftp logs to ensure that no one has messed with your site.

    Hope this helps,
    Chris
     
    RHS-Chris, Mar 2, 2010 IP
  10. huseinbandi

    huseinbandi Well-Known Member

    Messages:
    1,060
    Likes Received:
    3
    Best Answers:
    0
    Trophy Points:
    130
    #10
    owh... yyou just using shared hosting?right... okay.. i see. i think..for secure, you must be use bee trap if later your website hacked. using combined password. and change for CHMOD mode..

    regards,
    Noctis Warlock [http://superhacker.org]
     
    huseinbandi, Mar 2, 2010 IP
  11. shinan

    shinan Well-Known Member

    Messages:
    1,826
    Likes Received:
    38
    Best Answers:
    0
    Trophy Points:
    108
    #11
    If are not a DIY person, just use the link on my signature. I do full website audits for a cheap price.
     
    shinan, Mar 2, 2010 IP
  12. adsenselabs

    adsenselabs Peon

    Messages:
    21
    Likes Received:
    0
    Best Answers:
    0
    Trophy Points:
    0
    #12
    Install a firewall i very like CSF it is free, very fast and safe
     
    adsenselabs, Mar 26, 2010 IP
  13. -Ray-

    -Ray- Peon

    Messages:
    20
    Likes Received:
    0
    Best Answers:
    0
    Trophy Points:
    0
    #13
    Make sure you harden your PHP.. This is the biggest one.. Install PHPSusex



    Great blog btw...
     
    -Ray-, Apr 9, 2010 IP
  14. app789

    app789 Peon

    Messages:
    330
    Likes Received:
    2
    Best Answers:
    0
    Trophy Points:
    0
    #14
    Well, I would like to suggest you to use htaccess method, I also use & satisfied.
     
    app789, Apr 15, 2010 IP
  15. akhdiyat

    akhdiyat Member

    Messages:
    14
    Likes Received:
    0
    Best Answers:
    0
    Trophy Points:
    36
    #15
    very well.. thank you for the information..
     
    akhdiyat, Apr 16, 2010 IP
  16. clbyodo

    clbyodo Peon

    Messages:
    3,457
    Likes Received:
    7
    Best Answers:
    0
    Trophy Points:
    0
    #16
    You can secure server by installing a firewall.
     
    clbyodo, Apr 29, 2010 IP
  17. p.hall

    p.hall Guest

    Messages:
    26
    Likes Received:
    0
    Best Answers:
    0
    Trophy Points:
    0
    #17
    Also don't forget to disable ssh logins for root. Maybe install logwatch so you can monitor what is happening on your server.
     
    p.hall, Apr 30, 2010 IP
  18. extremephp

    extremephp Peon

    Messages:
    1,290
    Likes Received:
    32
    Best Answers:
    0
    Trophy Points:
    0
    #18
    Rent a Server MAnager For yourself who will Secure it his own and You can Well, Contact him in anycase of trouble sthen, Easy Way :)

    OR if you go alone, Take care of Passwords, Annoymous FTP, Scan FTP uploads, CHmod Directories PRoperly and much more as others said :)
     
    extremephp, Apr 30, 2010 IP
  19. Sandino

    Sandino Peon

    Messages:
    33
    Likes Received:
    0
    Best Answers:
    0
    Trophy Points:
    0
    #19
    some beginning steps would be installing CSF, and running the security check.
     
    Sandino, Jul 13, 2010 IP
  20. Alexandros1

    Alexandros1 Peon

    Messages:
    332
    Likes Received:
    1
    Best Answers:
    0
    Trophy Points:
    0
    #20
    Open Text, the mother of all Canadian software-centric companies, has released a new secure network access tool called Connectivity Secure Server under its Hummingbird Connectivity Ltd. division.
     
    Alexandros1, Aug 2, 2010 IP