So I was reading a lot of tutorials here on WHT, and found a link to web4host.net

I found on their homepage that they have this project called ELS, and would like to share it with you.

http://www.web4host.net/els.php

To get it up and running for you, issue the following command as root:

wget -O installer.sh http://els.web4host.net/installer.sh
chmod +x installer.sh
sh installer.sh

This script helped me setup some security enhancement for my VPS, and I hope this helps you out too! :)

Is that really true. This script can secure VPS.

Yes, I'm using it on my box :)

In some cases, hardening your /tmp, /var/tmp and /dev/shm or other measures should be done manually.

In some cases, hardening your /tmp, /var/tmp and /dev/shm or other measures should be done manually.

In all cases security measures should be done manually by trained professionals who know what they're doing, not by some kid who downloaded something off of the internet in their dad's basement.

Securing your server is not an automated process. Sure, some of it can be (firewall administration, log rotation, etc), but that's just the small end of the spectrum

Just in case anyone cares, original is here - http://servermonkeys.com/els.php

The site you linked to seems a tad fishy looking to me..

Just in case anyone cares, original is here - http://servermonkeys.com/els.php

The site you linked to seems a tad fishy looking to me..

Yeah but they've mentioned the name of the creator on their website. " ELS was created by Richard Gannon, Martynas Bendorius and Wael Isa."

Thanks!
This scrit protect from shells ?

Thanks!
This scrit protect from shells ?

No it doesnt, it just hardens your server and instals CSF ect. You need to add custom rules to mod_sec and disable functions to render them useless.

Hardening a server with a script? pointless. No server is the same, doing it manually is the only way to fly!

Hardening a server with a script? pointless. No server is the same, doing it manually is the only way to fly!

Truth++++

Another problem with scripts is, unless you take a little time to view the source code, most people generally have no clue what is really being done behind the scenes.

Truth++++

Another problem with scripts is, unless you take a little time to view the source code, most people generally have no clue what is really being done behind the scenes.

yes, and from my experience this script is not recommeded by Cpanel Servers

Is that really true. This script can secure VPS.

It's good as a starting point but it misses a lot of things, also it uses APF from which most people have now moved to CSF firewall.

Any body who buys a VPS from us has the option in the order form to have the basic security set up automatically for him

If Yes for secuirty reasons our script will first make the following adjustments: *Only "root" can be used for any major Command - Permission Change: chmd 700 netstat, ifconfig, wget, curl, make, gcc, perl, python, java, dmesg, whereis, whoami, test, finger, pstree, who, last, w, lsmod - ubuntu : gcc-*, python*, w.procps (Replacement of the Binary) allow_url_fopen For security reasons will be inactive(CentOS) - For clients who have chosen Apache-PHP-Mysql In /etc/php.ini Our script will make the: allow_url_fopen = Off Also Our script will install "fail2ban" to protect your SSH - If during 10 min 20 times failed login is detected the IP will be banned for 20 min

Great find.

Thanks for it will give it a try

Just in case anyone cares, original is here - http://servermonkeys.com/els.php

The site you linked to seems a tad fishy looking to me..

you right but now i update els ver 4.0.1.2 :)
and you can ask Martynas in directadmin forums :agree:

That script is pure junk.

## 32MB for every 1GB of RAM

Honestly? rofl.

That script is pure junk.

## 32MB for every 1GB of RAM

Honestly? rofl.

Another valuable post....why do you bother posting if you don't offer advice..or at least comment further than your nearly worthless 2 cents.

It doesn't seem useful to be honest, APF is not as good as CSF.

I wouldn't trust it with a barge pole.

Relying on any automated script to secure your server is a very, very, bad idea. Especially since their site says it was tailored for OS versions that are end-of-life and their script has not been updated in almost 3 years. So aside from not being of any benefit, it can potentially actually do harm by modifying your system to what the standards were 3 years ago (mysql 4.1, APF firewall, etc.)

hello there, firstly thank you for the script but it seems i cannot download the script, any other mirror?