Securing Linux webserver is important and due to numerous providers on the Hosting market, offering Linux servers are cheaper than ever before. The idea of purchasing your own Server is tempting, but be careful, because as the owner of a server you are responsible for this in full and liable for actions that emanate from the Server. Hackers target poorly secured servers; these computers are infiltrated and misused for their own purposes.
Often the computers are then used to send spam emails or to execute DDoS attacks. Serious problems arise especially when illegal material is distributed over the Server. Here, the owner has to calculate with sensitive legal consequences. In order to counter this, certain basic rules should be observed during the server configuration, which makes it difficult for the attackers to penetrate the Server. Also, try $1 Web Hosting and get secured services will host your website as well as do check some of these rules:
The System should keep up to date
The operating system as well as the software and services used (web server, mail server, etc.) must always be kept up to date. Updates must be done regularly, preferably by Cronjob every day automatically. Especially after the reinstallation of the system, Updates must be executed, because of the software provided by the company is not always up-to-date.
2. SSH settings
Most attackers try to hack Root access to the Server. Create a new user with its own name for the SSH access and disable the Root access completely in the SSH Configuration. Also, check the $1 Unlimited Hosting with a detailed plan.
Further options to provide even more security:
- Manually change the default SSH Port to another one
- Disable SSH Log-ins via password entry and only allow Log-ins with a valid key file
- Use of additional applications such as fail2ban or denyhosts. These programs automatically block the IP addresses of attackers.
In this context, it should be noted that it is extremely important to always use secure passwords, which are composed of letters, numbers and special characters.
3. Ports secure configure / Firewall
The system’s firewall should be configured to block ports that are not needed. The common Ports used are for example SSH, FTP, HTTP, and HTTPS. To configure the Firewall, use the native software or make the settings directly via iptables. Netstat helps you to see which Ports are open and being used. Make sure that you do not lock yourself out while configuring the Firewall.
4. Security software
There are also different types of security software for servers such as virus scanners, Anti-Rootkits, and malware scanners. Must know about frequently used software is ClamAV, chkrootkit, rkhunter, and tripwire. Keep these programs up to date and scan your system regularly.
5. Settings of individual server services
All server services must also be kept up-to-date, and the default settings should be optimized. The settings depend on the usage check and the type of services used. Here are a few examples:
FTP
- Check security settings and, for example, don’t allow anonymous users to Log in.
- Block Port if the service is not in use.
PHP
- Limit read and write access from PHP to explicitly allowed directories.
- Turn off public error messages because they disclose system information unnecessarily.
Please note that this guide only serves as a basis and does not claim to be complete. As the owner of a server, you are solely responsible for its security and should ideally deal with the matter continuously and intensively. So, always consider the best hosting provider, and can try $1 Hostingmoving up with the- https://www.mytruehost.com/