Archive for the ‘Server Security’ Category

IS FTP SECURE AND HOW CAN I SECURE FTP? (SFTP)

Posted: 28th March 2008 by admin in Server Security
Tags: , , ,
0

A general connection to your FTP server, (file transfer protocol) is not secure. When you connect without using SSH, both your userid and password are sent to the server “in the clear” or in other words, without any encryption. Would you post yourFTP Security server security linux username and password on a public website for all to see?

Furthermore, the files you are sending are unencrypted too, so if they contain passwords, sensitive customer data, etc, you are putting that on the public site as well. Anyone using Cain & Able type software could sniff your information relatively easily.

How to use Secure FTP or SFTP?  Read more... (324 words, 1 image, estimated 1:18 mins reading time)

This is a preview of IS FTP SECURE AND HOW CAN I SECURE FTP? (SFTP). Read the full post (324 words, 1 image, estimated 1:18 mins reading time)

HOW TO CLOSE OPEN DNS SERVERS (NAMESERVERS – OPEN RELAYS)

Posted: 18th March 2008 by admin in Server Security
Tags: , , , , ,
0

If you are running your own nameservers and you have checked your DNS report at dnsreport (or the non-pay site I recommend IntoDNS you’re probably seeing Fail Open DNS Servers. You should probably (in the interest of Server Security) close the open DNS servers.How do I check my system?
Go to www.dnsreport.com or IntoDNS and enter your domain name, eg MYSITE.com

You’re safe if you see: PASS Open DNS servers

You need to do the steps in this tutorial if you see: FAIL Open DNS servers

Closing Open DNS Servers Tutorial  Read more... (349 words, estimated 1:24 mins reading time)

This is a preview of HOW TO CLOSE OPEN DNS SERVERS (NAMESERVERS – OPEN RELAYS). Read the full post (349 words, estimated 1:24 mins reading time)

Proper password selection – never too careful!

Posted: 14th March 2008 by admin in Computers, Server Security
Tags: , ,
0

I thought I would post a couple of kewl links for password generators.                    Password generator

PCTools – Online password generator

Credible? I should hope so, but remember all online activity can be captured. If you need a quick password, this is the site. Check out their awards page –> here!

OnlinePasswordGenerator.com Not sure about credibility, I offer no assurances. Looks easy enough.  Read more... (420 words, 1 image, estimated 1:41 mins reading time)

This is a preview of Proper password selection – never too careful!. Read the full post (420 words, 1 image, estimated 1:41 mins reading time)

DISABLE DIRECT ROOT LOGINS

Posted: 11th March 2008 by admin in Server Security
Tags: , , ,
0

The server configurations covered here will help secure ssh but not so tightly that it strangles itself.  The techniques in this and other tutorials posted here will help prevent most connection attempts by script kiddies. Any other detected attempts can then be classed as serious hacking attempts.

SSH has two protocols it can use. Protocol 1 and 2. Protocol 1 is less secure than 2 and not really needed so lets not use it.  Read more... (334 words, estimated 1:20 mins reading time)

This is a preview of DISABLE DIRECT ROOT LOGINS. Read the full post (334 words, estimated 1:20 mins reading time)

EMAIL NOTIFICATION OF ROOT ACCESS

Posted: 18th May 2007 by admin in Server Security
Tags: ,
0

Server will send email warning as soon as logged on. There is no way a hacker can hide the fact your server was accessed.

Edit the .bash_profile in the users directory
# pico .bash_profile (or nano .bash_profile if Pico/pine not installed)
Add: echo | mail -s “Subject: SRV00: ALERT – Root Shell Access on:’ `date` `who`” you@yourdomain.com

Permanent link to this post (58 words, estimated 14 secs reading time)

Close Open DNS Servers

Posted: 22nd February 2007 by admin in Server Security
Tags: , , ,
0

For those of you who check your nameservers and other DNS related issues using dnsstuff (now that it is a paid version, you can goto IntoDNS and still check for free), you’re probably seeing Fail Open DNS Servers. We’ll show you have to fixed named to close open dns servers.How do I check my system?
Go to IntoDNS and enter your domain name, eg yoursite.com

You’re safe if you see: PASS Open DNS servers

You need to follow this tutorial if you see: FAIL Open DNS servers

Closing Open DNS Servers Tutorial

1) Login to your server and su to root.  Read more... (322 words, estimated 1:17 mins reading time)

This is a preview of Close Open DNS Servers. Read the full post (322 words, estimated 1:17 mins reading time)

Disable Audit

Posted: 2nd January 2007 by admin in Server Security
Tags: ,
0

From SSH to disable:root@localhost# service crond stop
root@localhost# service atd stop
root@localhost# rmmod audit
root@localhost# lsmod | grep audit (make sure it’s gone)
root@localhost# echo “alias char-major-10-224 off” >> /etc/modules.conf
root@localhost# service crond start
root@localhost# service atd start

Permanent link to this post (39 words, estimated 9 secs reading time)

WHM/ CPANEL EDIT SETUP

Posted: 24th October 2006 by admin in Server Security
Tags: , , ,
0

Edit Setup
Login to your WHM as the root user. This is the main section to your web server where you can set the options once and will probably never need to change them.  Click on Basic cPanel/WHM Setup Most of these sections are self explanatory with examples of what they do. Just read them to get familiar. I’ll mention the important ones:  Read more... (2346 words, 49 images, estimated 9:23 mins reading time)

This is a preview of WHM/ CPANEL EDIT SETUP. Read the full post (2346 words, 49 images, estimated 9:23 mins reading time)