Helping people with computers... one answer at a time.
Read the article that everyone's commenting on.
how to setup web&mail server Ofredhat linux12(fedore core3)
can i publish this in my magazine i will mention you as the author and also put a link to your webste
Republishing terms & conditions are here: http://ask-leo.com/terms.html - if they don't work for you, email me directly.
I am new bee in list whose server is hacked.
Following article suggest some of CPanel's setting.
It could be useful for others.
It is good to minimize running services before publishing new Linux WEB server. Turn off all needless services as they are potentially security hole. I also have practise to forbid ssh root access ...
More can be read at http://www.redips.net/linux/lamp-setup/
Mod Security is probably the best option you have applied. In my experience dealing with 100's of servers, I find web application exploits to be the most frequent issue followed by compromised FTP accounts.
You've blocked FTP at the firewall but this will not prevent the issue I often encounter. Various trojans still FTP credentials. This happens client-side so the FTP firewall block will not prevent this. It will however prevent the bots from logging in, so you do get some protection but a clever attacker would at least get the account login.
You may also want to consider rate-limiting SSH and perhaps access to your WHM ports with iptables. I've used this to great success on a large number of cPanel servers. More details on this technique here.
To post a comment on "How should I set up my Linux Web Server?", please return
to that article's main page.
Question? Ask Leo!
The Tip Jar: Buy Leo a Latte!
By Date |
Business Card |
Advertisements do not imply my endorsement of any product or service.
Copyright © 2003-2013 Puget Sound Software, LLC and Leo A. Notenboom
Ask Leo! is a registered trademark ® of Puget Sound Software, LLC
Terms, Conditions & Privacy
Product Reviews, Recommendations and Affiliate Links Disclosure