Go Back   vb.org Archive > Community Discussions > Forum and Server Management
FAQ Community Calendar Today's Posts Search

Reply
 
Thread Tools Display Modes
  #1  
Old 02-04-2009, 05:12 PM
sherwood sherwood is offline
 
Join Date: May 2008
Location: United Kingdom
Posts: 84
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default New server, What to do now?

Well I just got my self a new server and I have just finished installing cpanel and CSF,

I am wondering what else should I have for security?
and any other optimizations i may need

Thanks
Reply With Quote
  #2  
Old 02-04-2009, 05:44 PM
ssslippy ssslippy is offline
 
Join Date: Jan 2006
Posts: 877
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default

cpanel is a full server control panel. You give up most control by installing it. There really isn't anything left to do.
Reply With Quote
  #3  
Old 02-04-2009, 06:56 PM
sherwood sherwood is offline
 
Join Date: May 2008
Location: United Kingdom
Posts: 84
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default

Ok.

But I need to know what other security software, scripts and anything else i can use as I have been ddos'd once before and i dont want it to happen again
Reply With Quote
  #4  
Old 02-04-2009, 11:39 PM
snakes1100 snakes1100 is offline
 
Join Date: Dec 2001
Location: Michigan
Posts: 3,733
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default

suhosin
mod_security <-- be careful with using all the default rule sets that come with mod_sec, very restrictive with vb.
php.ini - disable_functions <-- be careful what you disable though.
csf - close all un-needed ports
ssh - kill root access, then su to root, as well as lock ssh to select Ip's only.
Reply With Quote
  #5  
Old 02-05-2009, 03:36 AM
Dismounted's Avatar
Dismounted Dismounted is offline
 
Join Date: Jun 2005
Location: Melbourne, Australia
Posts: 15,047
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default

DenyHosts - Stops SSH brute-forcing.
Reply With Quote
  #6  
Old 02-05-2009, 07:09 AM
Marco van Herwaarden Marco van Herwaarden is offline
 
Join Date: Jul 2004
Posts: 25,415
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default

There are many websites that specialise in answering this question.
Reply With Quote
  #7  
Old 02-05-2009, 04:07 PM
King Justice King Justice is offline
 
Join Date: Apr 2006
Posts: 222
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default

I never went with cPanel again after my cPanel got hacked a few years ago and all my sites were lost.
Reply With Quote
  #8  
Old 02-05-2009, 04:16 PM
cad2go cad2go is offline
 
Join Date: Feb 2009
Posts: 181
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default

Get over to the vbulletin.com server configuration forum gather the information required in this post [Required]: Info for optimisation / troubleshooting requests [31/03/08 update] then post a server optimisation request.
Reply With Quote
  #9  
Old 02-08-2009, 09:49 PM
Voltar Voltar is offline
 
Join Date: Mar 2006
Location: Bakersfield, California
Posts: 77
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default

There are a lot of things that you can do to improve your cPanel box. What are you server specs? And how many sites do you have running on the box? Also, do you plan on trying to resell hosting using cPanel or is it only for your needs?

You can start by recompiling Apache + PHP using EasyApache. Create a new profile, enable all the options that you need, add in the mpm prefork option for Apache, and let it recompile. You'd be wise to install XCache also, you have to do it manually, and each time you recompile Apache in WHM you'll have to go to your php.ini and move the location of the xcache zend_extension up to the top of the list otherwise php will segfault.

Install CSF, you have already, along with rkhunter, and chkrootkit. You'll need to optimize MySQL also.

There is more to do that I can summarize in one post, PM me if you want more info.

Also, since you have CSF installed, log into WHM > Plugins > ConfigServer Security&Firewall. Run the "Check Server Security" tool. It'll help you out with a bit of stuff that you can do, but it is by no means a subsitute for everything.
Reply With Quote
  #10  
Old 02-16-2009, 12:13 AM
jrap jrap is offline
 
Join Date: Jan 2005
Posts: 37
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default

SIM - monitors services..a real life saver (http://rfxnetworks.com/sim.php)
APF - iptables based firewall (http://rfxnetworks.com/apf.php)
BFD - brute force detection (http://rfxnetworks.com/bfd.php)

basically rfxnetworks.com rocks
Reply With Quote
Reply


Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump


All times are GMT. The time now is 04:13 AM.


Powered by vBulletin® Version 3.8.12 by vBS
Copyright ©2000 - 2024, vBulletin Solutions Inc.
X vBulletin 3.8.12 by vBS Debug Information
  • Page Generation 0.04642 seconds
  • Memory Usage 2,244KB
  • Queries Executed 13 (?)
More Information
Template Usage:
  • (1)SHOWTHREAD
  • (1)ad_footer_end
  • (1)ad_footer_start
  • (1)ad_header_end
  • (1)ad_header_logo
  • (1)ad_navbar_below
  • (1)ad_showthread_beforeqr
  • (1)ad_showthread_firstpost
  • (1)ad_showthread_firstpost_sig
  • (1)ad_showthread_firstpost_start
  • (1)footer
  • (1)forumjump
  • (1)forumrules
  • (1)gobutton
  • (1)header
  • (1)headinclude
  • (1)navbar
  • (3)navbar_link
  • (120)option
  • (10)post_thanks_box
  • (10)post_thanks_button
  • (1)post_thanks_javascript
  • (1)post_thanks_navbar_search
  • (10)post_thanks_postbit_info
  • (10)postbit
  • (10)postbit_onlinestatus
  • (10)postbit_wrapper
  • (1)spacer_close
  • (1)spacer_open
  • (1)tagbit_wrapper 

Phrase Groups Available:
  • global
  • inlinemod
  • postbit
  • posting
  • reputationlevel
  • showthread
Included Files:
  • ./showthread.php
  • ./global.php
  • ./includes/init.php
  • ./includes/class_core.php
  • ./includes/config.php
  • ./includes/functions.php
  • ./includes/class_hook.php
  • ./includes/modsystem_functions.php
  • ./includes/functions_bigthree.php
  • ./includes/class_postbit.php
  • ./includes/class_bbcode.php
  • ./includes/functions_reputation.php
  • ./includes/functions_post_thanks.php 

Hooks Called:
  • init_startup
  • init_startup_session_setup_start
  • init_startup_session_setup_complete
  • cache_permissions
  • fetch_postinfo_query
  • fetch_postinfo
  • fetch_threadinfo_query
  • fetch_threadinfo
  • fetch_foruminfo
  • style_fetch
  • cache_templates
  • global_start
  • parse_templates
  • global_setup_complete
  • showthread_start
  • showthread_getinfo
  • forumjump
  • showthread_post_start
  • showthread_query_postids
  • showthread_query
  • bbcode_fetch_tags
  • bbcode_create
  • showthread_postbit_create
  • postbit_factory
  • postbit_display_start
  • post_thanks_function_post_thanks_off_start
  • post_thanks_function_post_thanks_off_end
  • post_thanks_function_fetch_thanks_start
  • post_thanks_function_fetch_thanks_end
  • post_thanks_function_thanked_already_start
  • post_thanks_function_thanked_already_end
  • fetch_musername
  • postbit_imicons
  • bbcode_parse_start
  • bbcode_parse_complete_precache
  • bbcode_parse_complete
  • postbit_display_complete
  • post_thanks_function_can_thank_this_post_start
  • tag_fetchbit_complete
  • forumrules
  • navbits
  • navbits_complete
  • showthread_complete