| By :
Dirik Hameed
There are criminals out there who have learned to exploit the Internet in order to take advantage of other people. Because of this, you need to secure your VPS server. By keeping your VPS protected early on, you're saving time and effort and you're preventing other problems as well. There are a number of basic steps that will help secure your Linux VPS hosting. In this article, I'll illustrate the five most basic steps you need to take in order to protect your VPS. Installing a Fire wall By installing a firewall, you can save your Linux virtual server hosting from unauthorized access and from powerful force attacks. You can also add Config Server Firewall (CSF), System Integrity Monitor (SIM), Network Socket Inode Validation (NSIV), and Linux Environment Security (LES) if you want to protect your server more. Although adding a firewall means that you need to open extra ports if you want to install new applications and programs, the added security is well worth the extra effort. Installing root kit Hunter You can easily scan for Trojans, root kits, backdoors, local exploits, and other threats to your security with a root kit hunter. It can be useful to detect any failures in your layers of defence. If you want to install a root kit hunter, the following steps need to be followed. a. With your SSH as root, log in to your server. [root@support007 ~]# cd /usr/local/src/ b. Download latest RKHunter Version [1.3.2] [root@support007 ~]# wget rkhunter.1.3.2.tar.gz c. Extract files as indicated. [root@support007 ~]# tar -xzvf rkhunter-1.3.2.tar.gz d. [root@support007 ~]# cd rkhunter-1.3.2 e. [root@support007 ~]# ./installer.sh f. Choose the feature on RKHunter that will send you daily emails of scan reports. [root@support007 ~]# pico /etc/cron.daily/rkhunter.sh By following these steps, you can successfully install a root kit hunter. Securing /tmp partition Most of the attacks and exploits use /tmp to work out of any propagate themselves. You can mount your /tmp with stops that can make sure that executables can't be run from /tmp and to prevent escalated privileges. Such stops are "noexec" and "nosuid". You can do it by adding none /tmp tmpfs nodev,nosuid,noexec 0 0 in "/etc/fstab". After you do this, you just need to save the file and reboot the VPS hosting UK. Installing ModSecurity ModSecurity is actually a powerful shield against most attacks. It's open source, meaning it's free. It detects intrusions and prevents attacks on your programs that could be the most vulnerable. ModSecurity supports both branches of the Apache web server. Enabling PHP suEXEC Once a PHP runs as an Apache Module, it executes as the user or group of the web server. In most cases, this is usually "nobody" or "apache". On the other hand, Apache is supplied with suexec, which allows executing CGI scripts as the user they belong to, instead of Apache's user. This improves security in situations where multiple mutually distrusting users have the possibility to put CGI content on the server. By following these simple five steps, any user can secure their VPS server and save it from any internal or external infection. You have to remember that your hardware and the files in it are extremely important, and should be protected from all possible dangers, be it Trojans, root kits, and other viruses. Recovering all your lost data can be costly, and you can actually consider protecting your VPS as a smart investment, since it'll pay off in the long run.
|
![[Valid RSS feed]](http://www.articleforbacklinks.com/images/icon_Rss.png "XML Feed For RSS"){kind=icon}
Category Rss Feed
Print This Article
Add To Favorites
