Grant wrote: > It has come to my attention that a particular person I know may be > intent on attacking my server/website in any way possible. He doesn't > know much about Linux but does know Windows. What kind of things > should I lock down to protect my remote hosted server? I don't have > time to get too crazy with security right now, but what kinds of > simple tricks might this fellow learn by asking around on forums, etc?
1) Use firewall to block access to everything but the services you need to be accessible.(be very careful here so you DO NOT disable YOUR access) 2) Update your packages to their latest stable versions. 3) Check the configuration of your services - they should deny all functionality but the one you intended to provide. 4) Enable activity logging - this would help you find out the way somebody is trying to penetrate you system and give you opportunity to take counter measures. 5) Pray :) -- Best regards Daniel -- [email protected] mailing list
