Server Hardening

Server hardening consists of creating a baseline for the security on your servers in your organization. The default configurations of most Servers are not designed with security as the primary focus. Rather, a default installed computer is designed for communication and functionality. To protect your servers, you must establish solid and sophisticated security policies for all types of servers in your organization.
Securing your server is important to protect your data, intellectual property, and time, from the hands of crackers (hackers).

Find below a list of things that can be done to make your server more secure from hack attacks
Brute Force Detection (BFD) - Most Linux servers on the Internet are attacked by brute force multiple times each week. BFD detects brute force connections and automatically enters the offending IPs into the firewall to be blocked.

SSH Server Hardening - Locks down and hardens the SSH server. Provides additional protection against brute force attacks.

Firewall Installation - APF (Advanced Policy Firewall) iptables based firewall and anti-dos rule sets.

Linux Environment Security (LES) - Enforces root-only permissions on system binaries as well as other restrictions on system programs.

/tmp, /var/tmp and /dev/shm Hardening - The /tmp, /var/tmp and /dev/shm directories are the most common cause of security compromises on web hosting servers. Hardening prevents execution of malicious scripts from being launched from these directories.

Disable Unused Services/Software - Unused services and software are disabled to prevent them from being exploited.

Block HTTP Denial of Service attacks.

System Integrity Monitor - Automatically monitors and restarts required services including HTTP, FTP, DNS, SSH, and MYSQL.

Linux Socket Monitor - Identifies and alerts you when rogue services are started on your server.

System Priority - Sets the priority to current processes being run on your server, decreasing load 5-25%.

Port Scans

- Detects port scan attacks and and automatically enters the offending IPs into the firewall to be blocked.

The above are some of the server hardening tasks done to prevent hack attacks.

Click Here if you would like to get Server Hardening done by our Engineers.
Please Click Here to contact our sales staff to get answers to your questions or to receive a quote for your specific requirements.