Tips to Secure your Server
From CyberWurx Customer Wiki
Contents |
Steps to secure your server
Updates
Always have the latest kernels and updates for your server. Updates will always fix known exploits that will be a burden to you later.
Firewall
Open ports means open doors. More open ports means more doors for a potential attack. Close programs that use ports you do not want open.
Firewall out traffic for different services like icmp or port scanning.
Directory Permissions
Make sure your directories are only editable by the user. Only use chmodded 777 directories if needed.
Huge amounts of hacks are uploaded due to forgotten directories chmodded writable by everyone. Make sure you know your directories and remove any you do not need.
Local Viruses
We have seen a number of local viruses implant themselves on local index.XXX files when you upload creating an exploit. Make sure you have up to date virus scanning tools installed and a regular scan is scheduled.
Know Your Users
Do not readily give ssh access to anyone with the server. SSH opens a whole new world of possibilities when given to the wrong people.
Jail your users into their respective ftp directories (consult your ftp server documentation for more information regarding chrooting users).
Windows Users
Make sure you use some sort of firewall protection for your windows servers.
Install updates as frequently as possible. Microsoft releases security updates frequently and it is very important to stay up to date.
Make sure you have some sort of virus protection installed.
Open RDP only to the ip addresses you intend accessing it.