Important steps for server security
These days security is getting more and more important thing over the internet. Thousands of servers gets harmed everyday by the attackers. Your website and hosting account security is important for Host1Free. That’s why I am speaking more about this in the past days.
To ensure the best service quality, every hosting provider should take necessary steps in servers security. If some of you have ever been in hosting administrator place, I am sure you have faced with a big variety of servers issues. From server resources over usage to DDOS attack, you always have to be prepared to take action against such activities and eliminate the problem as fast as possible. As there is a big competition in web hosting market, service quality probably is the most important thing in getting between the top hosting providers.
How to protect my servers ? The answer might be simple, as these days you can find any information or advice with qualified administrators. You just need to figure our from what you will be securing your servers. For example, the big security hole is the access to log in with super user called “root”. If the connection to the server using username root is allowed, there is high risk to get your server compromised. If you don’t know who tries to access your server, take a look at authorization logs and you will probably notice IP’s that have tried to log in using root and failed many times. To prevent such activity, disable direct root access and allow only your username. In this way, to get root rights, firstly you will need to log in using your username. To be more secured, it’s a good decision to change standard connection port to your custom.
When access to the server is restricted by allowing only particular usernames, it’s time to check other security ways. Another great thing is to enable only needed ports. By saying needed, I mean for the services that running in the server like email, MySQL, FTP, etc. This can be done by blocking all ports except needed. If your server is running in Linux, you can use IPTables firewall. Simply add required IPTables rules which drops connections from not allowed ports and similarly apply rules that accepts connections from allowed ports. This will protect the server from unwanted connections using not standard port.
Also, IPTables can be used not only to block not needed ports, but to drop connections from certain IP addresses. If you have suspected that someone is trying to get not authorized access, you may block his attempts to connect by applying firewall rule which drops connections from specified IP. This way you can block particular traffic from unwanted countries as IPTables can be used to block even IP range.
So we have looked at the basic important steps in server security. Now, make sure you keep an eye on the activity not only from the outside, but also inside the server. There always will be some users that tries to execute harmful script or hosts incorrectly programmed websites that causes resources over usage. Keep monitoring server resources usage and check which users utilizes most RAM, CPU, disk space, etc. Hope this blog post have introduced what is important in the server security and you will pay more attention on this thing.
Modestas has gained a big experience in web hosting and online business by being a member of Host1Plus.com for almost two years. Modestas is now able to consult in creating and optimizing websites, identifying servers and sites problems and more. Current living location is Kaunas, Lithuania.
Connect with Modestas on Google +
« Previous Post Next Post »
Thanks host1free,this article is helpful..