We are happy to announce that Vesta is back under active development as of 25 February 2024. We are working on v1 candidate and expect to engage more with the community over the coming months. We are committed to open source, and we encourage contributors to help us build the future of Vesta.
how you protect your server
how you protect your server
Hello,
I'm interested in how you protect your server to hacks and attacks, because I haven't a lot of experience to protect my server. And I hope to learn from you
I'm interested in how you protect your server to hacks and attacks, because I haven't a lot of experience to protect my server. And I hope to learn from you
Re: how you protect your server
Hello,
First, and most important: read, read, and read. After that, keep reading.
SSH
- Change SSH port
- Use keys, disable password access
- Avoid root login
- I'm receiving an email notification when a SSH connection is established; is not a bad idea to implement it.
FIREWALL / INTRUSION
- Always use a firewall; wich one, is up to you
- Enable just necessary ports
- Check regularly the firewall logs
- Use some intrusion prevention system (fail2ban, for example)
OS
- Keep updated the OS
- Disable non used services
- Use separate partitions
- Keep a regular backups
CMS
- Keep updated your CMS
- Change log-in path to your CMS
There are a lot of things to pay attention when you want to securize your server, but the only way to learn is reading, reading a lot.
First, and most important: read, read, and read. After that, keep reading.
SSH
- Change SSH port
- Use keys, disable password access
- Avoid root login
- I'm receiving an email notification when a SSH connection is established; is not a bad idea to implement it.
FIREWALL / INTRUSION
- Always use a firewall; wich one, is up to you
- Enable just necessary ports
- Check regularly the firewall logs
- Use some intrusion prevention system (fail2ban, for example)
OS
- Keep updated the OS
- Disable non used services
- Use separate partitions
- Keep a regular backups
CMS
- Keep updated your CMS
- Change log-in path to your CMS
There are a lot of things to pay attention when you want to securize your server, but the only way to learn is reading, reading a lot.
Re: how you protect your server
Thanks for your reply.
-
- Posts: 4
- Joined: Fri Nov 14, 2014 6:48 am
- Contact:
Re: how you protect your server
Hi,
Check the following articles. Surely it will help you.
http://www.webhosting.uk.com/blog/?s=server+protection
http://www.zdnet.com/shellshock-how-to- ... 000034072/
Check the following articles. Surely it will help you.
http://www.webhosting.uk.com/blog/?s=server+protection
http://www.zdnet.com/shellshock-how-to- ... 000034072/
Re: how you protect your server
Do you have experience with denyhosts?
Does it work with vesta cp?
Does it work with vesta cp?
Re: how you protect your server
You could have checked the requirements page on the deny hosts website, which mentions Python as a requirement. Stop being lazy, you don't need to ask this: read Vesta's docs page, and use google. You should know Python is not included in the vesta install, so you'd have to install that on your own. Most of all, these things have got little to nothing to do with Vesta and have everything to do with OS and networking. Server hardening is your own responsibility. Learn about it or hire someone.Joop wrote:Do you have experience with denyhosts?
Does it work with vesta cp?