How do you secure your server(s)?

clone1018

New Member
1. if you're running a hosting a website, you can add modsecurity/php ids to it to prevent webbased hacking.

2. limit the services that you're supposed to run(if some services are only used once in a while, then turn it off and turn it on based on demand)

3. if certain services are only to be accessed by you, then limit it to a predefined set of ip for better security(like ssh)

However, "Never use old/outdated script/software/OS" -- provided that it doesn't breaks anything, so, always do a backup before upgrading :)
Just to note, PHPIDS by itself does not prevent or protect against intrusion. It's an API for you to make your own application with. "The IDS neither strips, sanitizes nor filters any malicious input, it simply recognizes when an attacker tries to break your site and reacts in exactly the way you want it to."
 

wcypierre

New Member
Just to note, PHPIDS by itself does not prevent or protect against intrusion. It's an API for you to make your own application with. "The IDS neither strips, sanitizes nor filters any malicious input, it simply recognizes when an attacker tries to break your site and reacts in exactly the way you want it to."
of course you'd need some configuration, even with iptables, you'd need to add a rule to block an inbound connection to a  rarely used port that you don't want certain people to access, no?
 

clone1018

New Member
Right but the difference is IPTables still handles protecting you, IDS doesn't come with _anything_ to protect against it, it's your job to learn how to protect against the specific issue IDS is reporting and handle it properly. 
 

wcypierre

New Member
Right but the difference is IPTables still handles protecting you, IDS doesn't come with _anything_ to protect against it, it's your job to learn how to protect against the specific issue IDS is reporting and handle it properly. 
True. But the OP didn't mentioned about wanting an out of the box solution, I guess?
 

wlanboy

Content Contributer
I created this thread because well, why not ask people that are in this industry? They encounter and mitigate attacks almost daily. Thanks for the info, I'm sure other people will find this thread useful if they're not as security conscious as you all.
I am looking forward to new input too.
 

Tux

DigitialOcean? lel
Disable password authentication and use iptables to limit connections.

I don't change SSH ports as that's just security by obscurity, and those ports are likely to get scanned anyway.
 

ICPH

Member
Im using Config server firewall, i think its quite good protection. Also list open ports and close ones you dont use.
 

Grumble

New Member
I use geo blocking to allow only the countries I work with (UK, USA, AU etc.). You can either deny or allow countries. Allow makes for a shorter list.


Also, SSH with certificates and whitelisted IP access only.


No extra users.


32 character passwords.


No sudo on the server.


Wordfence or All in one security for WordPress.
 
Last edited by a moderator:

samK

New Member
Secure Server Connectivity
  1. Establish and Use a Secure Connection. ...
  2. Use SSH Keys Authentication. ...
  3. Secure File Transfer Protocol. ...
  4. Secure Sockets Layer Certificates. ...
  5. Use Private Networks and VPNs. ...
  6. Monitor Login Attempts. ...
  7. Manage Users. ...
  8. Establish Password Requirements.
 

Aditi18

New Member
Secure Server Connectivity

Establish and Use a Secure Connection.
Use SSH Keys Authentication.
Secure File Transfer Protocol.
Secure Sockets Layer Certificates.
Use Private Networks and VPNs.
Monitor Login Attempts.
Manage Users.
Establish Password Requirements.
 

RuskinF

Member
We follow these steps to secure our servers:
  1. Establish and Use a Secure Connection.
  2. Use SSH Keys Authentication.
  3. Secure File Transfer Protocol.
  4. Secure Sockets Layer Certificates.
  5. Use Private Networks and VPNs.
  6. Monitor Login Attempts.
  7. Manage Users.
  8. Establish Password Requirements.

We follow these procedures at Apps4Rent | O365CloudExperts | CloudDesktopOnline
 

Daniel165

New Member
We follow these steps to secure our servers:
  1. Establish and Use a Secure Connection.
  2. Use SSH Keys Authentication.
  3. Secure File Transfer Protocol.
  4. Secure Sockets Layer Certificates.
  5. Use Private Networks and VPNs.
  6. Monitor Login Attempts.
  7. Manage Users.
  8. Establish Password Requirements.

I have read this article from phoenixnap.com/kb/server-security-tips the author written an article in simple language.
 

Jacob45

New Member
Before you can secure your server, you should know what the most common security risks you face are, including injection, authentication, cross-site scripting, denial of service, and security reconfiguration.
  • Update Outdated Content Management Systems
  • Confirm Brute Force Detection Is Installed
  • Change The Default SSH Port
  • Disable the Root User Login
  • Update Your Root User and SSH Information in Manage
  • Practice Safe Passwords
 
Top