VPS Security Measures.
As technology improves the threats to both Windows & Linux based systems are becoming stronger, meaning a higher chance of security breakage. As technology moves on more and more people are using VPS as it is becomnig much lower in price. Customers at 600Host are finding VPS much better due to being able to have there own resources they are choosing VPS rather then UK Web Hosting.
To improve your security for VPS then the following simple methods can be introduced:
- CSF Firewall
- RKHunter
- SIM (System Integrity Monitor)
- LES (Linux Environment Security).
However, you will want to secure the script programming languages also to ensure they can not be exploited to gain full access to your web hosting server.
CSF Firewall
This software is a popular firewall in the web hosting industry as it intregrates with the web hosting manager side of cpanel (WHM). When this is set up correctly it will block IP addresses/hostnames that attempt to attack your server.
Installing CSF really simple all you need to do for the basic installation is run the following commands in an SSH window:
- wget http://www.configserver.com/free/csf.tgz
- tar -xzf csf.tgz
- cd csf
- sh install.sh
RKHunter
Rootkit hunter is a software that will scan your root sector for rootkits, trojans, backdoors and local exploits.
To install this please do the following in SSH:
- wget http://downloads.sourceforge.net/rkhunter/rkhunter-1.3.2.tar.gz
- tar -xzf rkhunter-1.3.2.tar.gz
- cd rkhunter-1.3.2
- ./installer.sh
/tmp securing this area
Alot of the attacks / exploits take place within this folder so it is important to keep this folder secure. If you are running Cpanel on a dedicated server then you simply need to do the following:
As technology improves the threats to both Windows & Linux based systems are becoming stronger, meaning a higher chance of security breakage. As technology moves on more and more people are using VPS as it is becomnig much lower in price. Customers at 600Host are finding VPS much better due to being able to have there own resources they are choosing VPS rather then UK Web Hosting.
To improve your security for VPS then the following simple methods can be introduced:
- CSF Firewall
- RKHunter
- SIM (System Integrity Monitor)
- LES (Linux Environment Security).
However, you will want to secure the script programming languages also to ensure they can not be exploited to gain full access to your web hosting server.
CSF Firewall
This software is a popular firewall in the web hosting industry as it intregrates with the web hosting manager side of cpanel (WHM). When this is set up correctly it will block IP addresses/hostnames that attempt to attack your server.
Installing CSF really simple all you need to do for the basic installation is run the following commands in an SSH window:
- wget http://www.configserver.com/free/csf.tgz
- tar -xzf csf.tgz
- cd csf
- sh install.sh
RKHunter
Rootkit hunter is a software that will scan your root sector for rootkits, trojans, backdoors and local exploits.
To install this please do the following in SSH:
- wget http://downloads.sourceforge.net/rkhunter/rkhunter-1.3.2.tar.gz
- tar -xzf rkhunter-1.3.2.tar.gz
- cd rkhunter-1.3.2
- ./installer.sh
/tmp securing this area
Alot of the attacks / exploits take place within this folder so it is important to keep this folder secure. If you are running Cpanel on a dedicated server then you simply need to do the following:
- /scripts/securetmp
Secure Apache / PHP
To ensure good security you should first make sure these softwares are up to date, with apache you should make sure certain modules are installed such as mod_security this will prevent any web based injection attacks and mod_evasive which will prevent any web based brute force attacks.
The above are basic methods to keep your web hosting server secure and in good working condition, there is many more methods also out there.