FORUM HOME | WHUK BLOG   
WEB HOSTING UK AFFORDABLE WEBSITE HOSTING SERVICES IN UNITED KINGDOM
PHP LINUX SHARED HOSTING WINDOWS ASP.NET HOSTING PACKAGES
ECOMMERCE HOSTING ASP MSSQL MS ACCESS ODBC FRONTPAGE HOSTING
CPANEL WHM FANTASTICO RESELLER DEDICATED SERVER WEB HOSTING
CHEAP PLESK CPANEL HTML MYSQL BEST UK VPS HOSTING COMPANY
CHEAP RELIABLE UK HOSTING PROVIDER SINCE 2001
MANAGED WEB HOSTING SERVICE
AFFORDABLE WEBSITE HOSTING SERVICES IN UNITED KINGDOM
RegisterF.A.Q.Member List

Web Hosting UK Forums | Linux Windows Dedicated Server and cPanel VPS Hosting Forum » Technical Support » Security Issues
- » Summary of security steps for Linux

Reply
 
LinkBack Thread Tools Display Modes

  #1 (permalink)  
Old 14-02-11, 10:42 AM
Senior Member
  
Join Date: Nov 2010
Posts: 108
Default Summary of security steps for Linux
Some of the tip and trick to take care while working on the security steps for Linux operating systems.



1. Exim.
Enable extended logging :
Add the following line in exim, below the first line recommended log_selector = +address_rewrite +all_parents +arguments +connection_reject +delay_delivery +delivery_size +dnslist_defer +incoming_interface +incoming_port +lost_incoming_connection +queue_run +received_sender +received_recipients +retry_defer +sender_on_delivery +size_reject +skip_delivery +smtp_confirmation +smtp_connection +smtp_protocol_error +smtp_syntax_error +subject +tls_cipher +tls_peerdn \

Fommail Trap
FormMail-Trap
For Securing Exim i found this a Good resource
cPanel Theme - RVSkin, a great experience for you, reseller, and clients

2. Secure Httpd :-
install mod_security
install mod_dosevasive (causes problem with FP sometimes though)

3. Secure PHP :-
disable_functions = "system,exec"

eAccelerator for PHP acceleration
eAccelerator | Download eAccelerator software for free at SourceForge.net

3.5 IPTABLES settings ;-
iptables -A INPUT -p tcp -m tcp --tcp-flags FIN,SYN,RST,PSH,ACK,URG NONE -j IN_SANITY

4. Some small recommended apps :-

Install BFD from rfxnetworks.net
Install LSM from rfxnetworks.net
APF from rfxnetworks.net
rkhunter can be found on Rootkit.nl - Protect your machine


5. cpanel script to disable compilers incase we have not done this yet
/scripts/compilers off


6. MYSQL Security Measures :-

mysql query cache
vi /etc/my.cnf
query-cache-type = 1
query-cache-size = 100M
100M can be changed according to how busy the server is

7. Securing some binaries :- make the necessary changes on the folder as per the security.

chmod 750 /usr/bin/rcp
chmod 750 /usr/bin/wget
chmod 750 /usr/bin/lynx
chmod 750 /usr/bin/links
chmod 750 /usr/bin/scp
chmod 000 /etc/httpd/proxy/

8. Some other tweaks related to linux.
Securing /tmp
/dev/sad3 /tmp ext2 loop,noexec,nosuid,rw 0 0
A good sysctl config can be found here Syctl.conf Hardening | eth0.us - Server admin info for cPanel, plesk, ensim and linux!

httpd.conf
Timeout 15
KeepAlive Off
KeepAliveTimeout 5
Reply With Quote

  #2 (permalink)  
Old 28-02-11, 08:58 AM
Moderator
  
Join Date: Nov 2010
Posts: 131
Default
The information you have provided is helpful. Thanks For sharing Shane.
__________________
UK VPS Hosting || SEO Server || Cloud Hosting
Looking for extra income ?
Join our webhosting affiliate program and earn upto £300 Webhosting UK Affiliate
Reply With Quote

  #3 (permalink)  
Old 04-03-11, 10:29 AM
hillaryjohnson's Avatar
new member
  
Join Date: Mar 2011
Location: San Jose, CA
Posts: 6
Default
Hey Great information you have provided here . . Install an intrusion detection system can also be helpful As per my point of view
Reply With Quote

  #4 (permalink)  
Old 17-09-11, 12:29 PM
Member
  
Join Date: Jul 2011
Posts: 93
Default
I think this information is absolutely helpful...thanks for posting it.
Reply With Quote

Reply

« protect my computer without buying hardware or software firewall | Safe internet browsing for kids . »
Thread Tools
Display Modes
Linear Mode Linear Mode

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are On
Forum Jump


All times are GMT. The time now is 06:06 AM.

Powered by vBulletin® Version 3.8.1
Copyright ©2000 - 2012, Jelsoft Enterprises Ltd.
Copyright 2001-2010 Web Hosting UK. All rights reserved.
Web Hosting UK Forum


Contact Us - Web Hosting UK - Archive - Privacy Statement - Top



Site Map

Shared Cloud
Shared Cloud From £1

Affiliate Program
Earn up to £300 Per Sale

Dedicated Servers
Dedicated Server Hosting

Cloud Hosting
Cloud Server Hosting

Load Balanced Server
Load Balancing Server

VPS Hosting
Linux VPS Hosting

Windows VPS
Windows 2003 VPS

Zimbra Hosting
Zimbra Email Hosting

cPanel Hosting
Shared Linux Hosting

Windows Hosting
Shared Windows Hosting

Coldfusion Hosting
Windows Coldfusion Hosting

cPanel Reseller Hosting
Reseller Hosting

Windows Reseller
Windows Reseller Hosting

Email Web Hosting
Email Hosting

Semi-Dedicated Server
Semi-Dedicated Hosting

Remote Backup Plans
Offsite Backup Service


cpanel hosting
Knowledgebase Articles

Pre-Sales Question
Web Hosting FAQ's

Dedicated Hosting
Dedicated Server FAQ's

Virtual Private Servers
VPS Hosting

PHP MySQL Hosting
cPanel Hosting

Windows Hosting
ASP MSSQL Hosting

Domain Name
Domain registration FAQ's

CMS Hosting
CMS Hosting FAQ's

Payment Gateways
Payment FAQ's


Support Tutorials

cPanel Tutorials
cPanel Flash Tutorials

Wordpress Tutorials
Wordpress Flash Tutorials

Plesk Tutorials
Plesk Flash Tutorials

PhpMyadmin Tutorials
PhpMyadmin Flash Tutorials

Drupal Tutorials
Drupal Flash Tutorials

Mambo Tutorials
Mambo Flash Tutorials

Joomla Tutorials
Joomla Flash Tutorials

More Hosting Tutorials