Hi folks, I'm running a 10.04 Ubuntu server 64 bit edition. It's on a mini-itx box I built, and currently drawing less the 60 watts. I'm using it for hosting an xhtml website, two wordpress blogs, a citadel email service, funambol server, ampache media server, project pier installation, encrypted filesystem backups, and mysql database.
Recently here in Australia we've had a number of sites hacked and crashed... while I know I'm unlikely to be able to protect myself from everything, I'd love some help from a few knowledgeable people about how to make my server as secure as possible. Other than that, my plan is to keep regular backups, and learn how to reinstall quickly if needed.
As well as the above services, I use ssh to gain access to my server. I have turned on password authentication, but ONLY with the correct certificates, which resides on 2 netbooks. They are infrequently online, with the /home parition of one encrypted.
I don't currently use ftp, and while I have webmin installed, I've configured it so the only way to login is wirelessly through my local network. So yes, if you knew my root password, and were standing out side of my house with a netbook, you could log in as root. Currently this is disabled for any traffic coming from the internet, so I'm not as concerned.
That said, I would love some tips about security, and how to avoid the crash and burn that seems to come from recent attacks on other servers. Would be happy to point some people at my server to see how many security vulnerabilities you can help me uncover. I have already done a lot of reading, so would appreciate targeted help with my particular installation. Thanks in advance for your help. Cheers.