Page 2 of 2 FirstFirst 12
Results 11 to 16 of 16
  1. #11
    Join Date
    Nov 2008
    Location
    Cambridge, UK
    Posts
    901
    Tokens
    100

    Default

    Quote Originally Posted by N!ck View Post
    A default installation of CentOS/Debian is pretty secure as it is other than the SSH port. It's when you start changing things/installing things that it becomes less secure and especially when you have other people accessing SSH.
    Apache can leave huge holes if you do it wrong. This is why I got someone else to do it all for me.
    we're smiling but we're close to tears, even after all these years

  2. #12
    Join Date
    Jun 2005
    Location
    /dev/null
    Posts
    4,918
    Tokens
    126

    Latest Awards:

    Default

    Quote Originally Posted by MattFr View Post
    Apache can leave huge holes if you do it wrong. This is why I got someone else to do it all for me.
    The holes in apache only really apply if you're a webhost and/or allow users to upload files. Assuming it's just him with access to upload files etc it's fine.

    A lot of securing things on Linux is actually about limiting/securing things that people who have some sort of access can do. If there's just one administrator with nobody having any access other than browsing and interfacing with the website then the default setup is fine. However running a website like his, no securing of things like apache is going to help if his codebase and usersystem aren't secure.

  3. #13
    Join Date
    May 2005
    Location
    /etc/passwd
    Posts
    19,110
    Tokens
    1,139

    Latest Awards:

    Default

    Quote Originally Posted by MattFr View Post
    If you need to ask this question your VPS will be crazy insecure. I suggest you do get someone who knows what they're doing to set it up for you.
    I'd have to agree here, you're handling other people's money and in that sense I'd be getting someone in to secure it for me. It's just small things, as Nick says, the more people you allow access to the server with and the more software you install, the less secure it becomes. Literally less than a day after most of my VPS's go online, without telling people, there are randomers from the far east trying to get into various accounts on things like FTP and SSH, let alone people who will possibly be looking for vulnerabilities when the site has launched.

    Block port 22 with a firewall and move SSH to an obscure port, disable SSH v1 (I think, it's something v1 in the SSH config) and if you really wanted to, you could disable password based authentication and stick to keys.
    Quote Originally Posted by Chippiewill View Post
    e-rebel forum moderator
    :8

  4. #14
    Join Date
    Jun 2005
    Location
    /dev/null
    Posts
    4,918
    Tokens
    126

    Latest Awards:

    Default

    Yeah, you get automated SSH login attempts from servers trying to find vulnerable ones to access. But if you actually look at the attempts they're for things like username: John Password: John Username: root Password: password. Not that big of an issue unless your password is as insecure as that lol. And the way to deal with it is moving SSH to a port other than 22 and/or disable password authentication.

  5. #15
    Join Date
    Jul 2008
    Location
    Devon
    Posts
    290
    Tokens
    0

    Default

    Hi,

    I can have one of my sysadmins install desired software packages, harden software platforms such as PHP, secure SSH and configure a firewall for a one-time fee.

    Feel free to message me.

    Thanks.

  6. #16
    Join Date
    Aug 2008
    Posts
    171
    Tokens
    91

    Default

    I'll harden the server for you for a small fee.
    [email protected]

Page 2 of 2 FirstFirst 12

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •