Page 1 of 1
What to do before installing Vesta CP?
Posted: Sun Jul 28, 2019 5:45 pm
by cyclone200
Hello,
I've just installed a new VPS with Debian 9. I plan to use VestaCP on it but I have just a simple question:
Now that Debian 9 is installed, do I have to do/configure something before installing Vesta? Or, can I just install it right after Debian 9.
My question is mostly about security.
Thank you very much.
Re: What to do before installing Vesta CP?
Posted: Sun Jul 28, 2019 7:52 pm
by dreiggy
Hi,
use clean OS to install vesta, then you can do some security hardening.
Re: What to do before installing Vesta CP?
Posted: Sun Jul 28, 2019 8:42 pm
by cyclone200
dreiggy wrote: ↑Sun Jul 28, 2019 7:52 pm
Hi,
use clean OS to install vesta, then you can do some security hardening.
Thank you very much, I will start tomorrow.
Just for information, do you have a few ideas for the security hardening you are mentioning?
Thank you again.
Re: What to do before installing Vesta CP?
Posted: Sun Jul 28, 2019 9:02 pm
by dreiggy
Here are many things for security hardening, but not all are good for users ;)
VestaCP is quite secure, but additional you can:
Disable mysql/mariadb remote connections
Add to my.cnf "local-infile = 0"
Check firewall rules
Disable ssh password logins, and use only keys
Disable root login (use other user for login to server and then suid to root user, or use sudo)
Disable dangerous php functions (You can try read this article:
https://www.cyberciti.biz/tips/php-secu ... orial.html)
Use SSL for panel and domains (letsencrypt)
AND etc:
https://lmgtfy.com/?q=linux+server+security+hardening
Re: What to do before installing Vesta CP?
Posted: Sun Jul 28, 2019 9:30 pm
by cyclone200
That is perfect, thank you very much for your fast answer!
Re: What to do before installing Vesta CP?
Posted: Wed Jul 31, 2019 9:51 am
by samolsen
You will require a fresh Ubuntu 16.04 machine with at least 1 GB of RAM.
A valid DNS name pointing its A record to the IP address of your Ubuntu machine.
Configuring FQDN of the host.