Server Security | Server Hardening

One time - server hardening & security includes the below list:

Hardening & Security

  • Update operating-system, kernel and all server related software
  • Disable unused & potentially vulnerable services
  • Limit access to select system binaries
  • Harden /etc/host.conf and /etc/sysctl.conf
  • Harden temporary system directories (/tmp, /var/tmp and /dev/shm)
  • Installation & Configuration of ConfigServer Firewall
  • Installation & Configuration of ConfigServer Login Failure Daemon (LFD)
  • Installation & Configuration of CHKRootKit with daily cronjob
  • Installation & Configuration of RKHunter with daily cronjob
  • Installation & Configuration of Linux Malware Detect (LMD)
  • Installation & Configuration of Mod_Security
  • Install ClamAV File/Email Antivirus
  • Disable root and anonymous FTP access
  • Restrict root access to SSH, enable logging and change default port
  • Restrict external access to MySQL
  • Disable compilers for underprivileged users
  • Enable shell fork bomb protection
  • Enable php open_basedir protection
  • Enable background process killer
  • Enable reccomended cPanel "Tweak settings"
  • Email notification on root login to SSH (On request)

Anti-Spam

  • Installation/configuration of SpamAssassin & ClamAV
  • Configure increased logging functionss
  • Configure Realtime Blackhole Lists (RBLs)
  • Configure Dictionary Attack Protection
  • Configure Rate Limiting
  • Install Razor2 collaborative filtering engine
  • Install DCC collaborative filtering engine

Optimization, Monitoring + Additional Software

  • Install RFXN System Priority (SPRI)
  • Install Configserver Explorer (CSE)
  • Install Sysstat Package (sar, iostat etc)
  • Install iftop
  • Install iotop

Price

  • Per server - $50 - (One time fee)

Sign Up

Live Chat