What additional things can I do to Secure my Dedicated or VPS server

1. Change your SSH port to a higher non used port 2. Disable Direct root Log in for SSH (make sure a  regular Unix user has has access to SSH so you can su to root)
 
2. Generate Public Keys to to log into SSH (they keys must be generated for your local computer)

3. Use only SSH protacal 2

4. disable password log in for SSH (note: step 3 above must be installed and working or you will lock your self out)
    a. if you connect via different computers or many other users have access to the keys this option may nor be for you

 5. Install a Firewall (This is set up by default by us on managed servers with the standard ports open and configured to your control panel if installed)

 6. Install a Brute Force detector to protect from password hacks  ( this is is installed by default by us on managed servers   IFD for cpanel & DirectAdmin Servers)

 7. Mod security for the Apache web server (we will install and install a basic rule set)

 8. Harden your PHP (disable dangerous PHP functions)

 9. keep your server software Up2date (if on a Managed server  we do this for you in the background always)

 12. Install Kernelcare system race protection for Apache (for multi user servers)

 11. keep your open source & commercial scripts running in your websites Up2date.

 All of the things above we will do for upon request  for FREE with the exception of a custom mod security rules and updating your own 3rd party scripts

  • 62 brukere syntes dette svaret var til hjelp
Var dette svaret til hjelp?

Relaterte artikler

New DNS

I Had you set up my nameservers in my new webserver. When I went to my...

I keep getting brute force attack warnings in my email

We have installed a brute force detector & firewall on your server this is a FREE added layer...

Reverse DNS (rDNS) (PTR)

How to Setup Reverse DNS Reverse DNS (rDNS) for your IP address can only be setup by...

TOS/AUP

For our Terns of service  and acceptable use  please see...

Reboots & Hardware Failure

1. Log a Priority ticket & include main Ip Address and check "reboot my server" 2. You may...