Results 1 to 5 of 5

Thread: Is there anything else I should do to secure my server?

  1. #1
    Join Date
    Mar 2009
    Beans
    166

    Is there anything else I should do to secure my server?

    I am running UFW, which is set to deny everything but SSH on port 22, OpenVPN on port 1194 and HTTPS on port 443. SSH is set to only allow private key logins, and the root account is disabled. I have AppArmor running for all of my daemons (OpenVPN, Apache2, OpenSSH) and I have Fail2Ban running.

    Is there anything else I can do to secure my server from the Internet (it is directly connected, there is no NAT between the Internet and my server).

  2. #2
    Join Date
    Nov 2007
    Beans
    45
    Distro
    Ubuntu 9.04 Jaunty Jackalope

    Re: Is there anything else I should do to secure my server?

    An IDS
    Registered Linux user: 461,426
    Registered Ubuntu user: 20512

  3. #3
    Join Date
    Mar 2009
    Beans
    166

    Re: Is there anything else I should do to secure my server?

    Quote Originally Posted by JT9161 View Post
    An IDS
    Think Snort will work?
    http://www.snort.org/

  4. #4
    Join Date
    Nov 2007
    Beans
    45
    Distro
    Ubuntu 9.04 Jaunty Jackalope

    Re: Is there anything else I should do to secure my server?

    Quote Originally Posted by Jekshadow View Post
    Think Snort will work?
    http://www.snort.org/
    Well, it's and IDS
    Registered Linux user: 461,426
    Registered Ubuntu user: 20512

  5. #5
    Join Date
    Dec 2005
    Beans
    22
    Distro
    Ubuntu Studio 9.10 Karmic Koala

    Re: Is there anything else I should do to secure my server?

    If you are running a web application it might be useful to look at mod_security It is an apache2 security module that protects against common sql injections, XSS attacks etc.They have a comprehensive howto on installing it with the basic signatures.

    --
    M Gichoga

Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •