Steven
01-09-2005, 02:18 AM
Initial Server Setup - $120 /dollars
- Security Plan #1 (http://www.rack911.com/security.php)
- Control panel configuration (includes setting up ips, dns, etc)
- PHP Recompile to include frequently requested functions (gd, mcrypt, curl, etc.)
- Installation of one 3rd party software.
- Configuration changes to your specifications.
System Recovery - $160
If you are root compromised, the best thing you can do is get a fresh os installed. Our system recovery package includes:
- Finding root cause of the compromise, so it can be prevented in the future.
- Security Plan #1 (http://www.rack911.com/security.php)
- Restoring all sites off slave drive.
Proactive Security Update Service - $25/server
With this service we will proactively patch your servers without any intervention from you. Rest assured you will stay secure. (Please note we require you to have at least security plan #1 applied by us. http://www.rack911.com/security.php for more info.)
Redhat 9 -> Centos Migrations - $45
Redhat 9 is no longer supported, except by fedora legacy and progeny. Have us upgrade your server to centos. Centos is a community supported operating system based from Redhat Enterprise. Other migrations available contact sales@rack911.com.
System Administration - $100/month per server - $30/setup
Need an on call administrator? Starting out? Don't know the ropes yet? This service is for you.
- Security Plan #1 (http://www.rack911.com/security.php)
- Proactive security updates
- Third party software installation
- 10 hours administration work
Kernel Upgrades:
- 2.4.28 = $20 (include grsecurity $30)
- 2.6.10 = $30 (include grsecurity $40)
General Software Update - $35
This service will update all the software on your server. Includes kernels.
Plan #1 $70
-Limit compiler & fetch utilities access to root only
-Correct folder permissions to prevent directory transversal on unprivileged users.
-Logwatch installation and configuration
Sends a detailed daily report of server events based on logs.
-Host.conf & sysctl hardening
Basic spoof & dos protection.
-Noexec, Nosuid temporary directory's.
Directory's include /dev/shm, /var/tmp, /tmp prevents basic scripts from being executed.
-Chkrootkit & RkHunter Installation.
Checks for possible root kits on the server and sends you a daily report.
-Installation and configuration of APF firewall
Restricts access to unneeded ports.
-Kernel update (w/grsecurity add $10 dollars)
-Disable of dangerous php functions
Disabling of functions that could potentially cause harm to the server and/or its users.
-BFD Installation
Checks for bruteforce attempts and automatically adds them to the firewall to block them.
-Update all server/control panel software.
-Disabling Unused Services
Unused services are disabled which could be exploited, for example telnet.
-PRM Installation
Process Resource Monitor.
-Samhain Configuration
File integrity checking / host-based intrusion detection
-System Integrity monitor
Tracks downed services and attempts to restart them.
-Check/secure configuration defaults on common services.
-RPM Package Audit
Removal of unneeded rpm packages, which could sometimes bring a hole for exploitation.
-Default User Audit
Removal of unneeded/unused default system users
-Default Group Audit
Removal of unneeded/unused default system groups
Plan #2 $100 (Recommended)
-Limit compiler & fetch utilities access to root only
-Correct folder permissions to prevent directory transversal on unprivileged users.
-Logwatch installation and configuration
Sends a detailed daily report of server events based on logs.
-Host.conf & sysctl hardening
Basic spoof & dos protection.
-Noexec, Nosuid temporary directory's.
Directory's include /dev/shm, /var/tmp, /tmp prevents basic scripts from being executed.
-Chkrootkit & RkHunter Installation.
Checks for possible root kits on the server and sends you a daily report.
-Installation and configuration of APF
Restricts access to unneeded ports.
-Kernel update (w/grsecurity add $10 dollars)
-Disable of dangerous php functions
Disabling of functions that could potentially cause harm to the server and/or its users.
-BFD Installation
Checks for bruteforce attempts and automatically adds them to the firewall to block them.
-NSIV Installation
Validates inodes against each LISTEN socket.
-PRM Installation
Process Resource Monitor.
-Update all server/control panel software.
-Disabling Unused Services
Unused services are disabled which could be exploited, for example telnet.
-Samhain Configuration
File integrity checking / host-based intrusion detection
-Linux Socket Monitor
Monitors created sockets and compares against a database.
-Enforce LCAP limitations
Limits kernel capabilities.
-Install and configure Mod_Security w/mildly aggressive ruleset
Used to prevent web attacks.
-Email Virus Scanning Configuration
Setup some kind of email virus scanning depending on your MTA
-System Integrity monitor
Tracks downed services and attempts to restart them.
-RPM Package Audit
Removal of unneeded rpm packages, which could sometimes bring a hole for exploitation.
-Default User Audit
Removal of unneeded/unused default system users
-Default Group Audit
Removal of unneeded/unused default system groups
-Check/secure configuration defaults on common services.
-Mod_dosevasive
Evasive maneuvers module for Apache to prevent dos type attacks on apache.
Customized Security Solutions - Start at $100
Hourly Work Rate - $30/hr
Need something special done? Just email sales@rack911.com and ask. We can do it!
Contact sales@rack911.com for more information. There is a 2 day turnaround for all work.
- Security Plan #1 (http://www.rack911.com/security.php)
- Control panel configuration (includes setting up ips, dns, etc)
- PHP Recompile to include frequently requested functions (gd, mcrypt, curl, etc.)
- Installation of one 3rd party software.
- Configuration changes to your specifications.
System Recovery - $160
If you are root compromised, the best thing you can do is get a fresh os installed. Our system recovery package includes:
- Finding root cause of the compromise, so it can be prevented in the future.
- Security Plan #1 (http://www.rack911.com/security.php)
- Restoring all sites off slave drive.
Proactive Security Update Service - $25/server
With this service we will proactively patch your servers without any intervention from you. Rest assured you will stay secure. (Please note we require you to have at least security plan #1 applied by us. http://www.rack911.com/security.php for more info.)
Redhat 9 -> Centos Migrations - $45
Redhat 9 is no longer supported, except by fedora legacy and progeny. Have us upgrade your server to centos. Centos is a community supported operating system based from Redhat Enterprise. Other migrations available contact sales@rack911.com.
System Administration - $100/month per server - $30/setup
Need an on call administrator? Starting out? Don't know the ropes yet? This service is for you.
- Security Plan #1 (http://www.rack911.com/security.php)
- Proactive security updates
- Third party software installation
- 10 hours administration work
Kernel Upgrades:
- 2.4.28 = $20 (include grsecurity $30)
- 2.6.10 = $30 (include grsecurity $40)
General Software Update - $35
This service will update all the software on your server. Includes kernels.
Plan #1 $70
-Limit compiler & fetch utilities access to root only
-Correct folder permissions to prevent directory transversal on unprivileged users.
-Logwatch installation and configuration
Sends a detailed daily report of server events based on logs.
-Host.conf & sysctl hardening
Basic spoof & dos protection.
-Noexec, Nosuid temporary directory's.
Directory's include /dev/shm, /var/tmp, /tmp prevents basic scripts from being executed.
-Chkrootkit & RkHunter Installation.
Checks for possible root kits on the server and sends you a daily report.
-Installation and configuration of APF firewall
Restricts access to unneeded ports.
-Kernel update (w/grsecurity add $10 dollars)
-Disable of dangerous php functions
Disabling of functions that could potentially cause harm to the server and/or its users.
-BFD Installation
Checks for bruteforce attempts and automatically adds them to the firewall to block them.
-Update all server/control panel software.
-Disabling Unused Services
Unused services are disabled which could be exploited, for example telnet.
-PRM Installation
Process Resource Monitor.
-Samhain Configuration
File integrity checking / host-based intrusion detection
-System Integrity monitor
Tracks downed services and attempts to restart them.
-Check/secure configuration defaults on common services.
-RPM Package Audit
Removal of unneeded rpm packages, which could sometimes bring a hole for exploitation.
-Default User Audit
Removal of unneeded/unused default system users
-Default Group Audit
Removal of unneeded/unused default system groups
Plan #2 $100 (Recommended)
-Limit compiler & fetch utilities access to root only
-Correct folder permissions to prevent directory transversal on unprivileged users.
-Logwatch installation and configuration
Sends a detailed daily report of server events based on logs.
-Host.conf & sysctl hardening
Basic spoof & dos protection.
-Noexec, Nosuid temporary directory's.
Directory's include /dev/shm, /var/tmp, /tmp prevents basic scripts from being executed.
-Chkrootkit & RkHunter Installation.
Checks for possible root kits on the server and sends you a daily report.
-Installation and configuration of APF
Restricts access to unneeded ports.
-Kernel update (w/grsecurity add $10 dollars)
-Disable of dangerous php functions
Disabling of functions that could potentially cause harm to the server and/or its users.
-BFD Installation
Checks for bruteforce attempts and automatically adds them to the firewall to block them.
-NSIV Installation
Validates inodes against each LISTEN socket.
-PRM Installation
Process Resource Monitor.
-Update all server/control panel software.
-Disabling Unused Services
Unused services are disabled which could be exploited, for example telnet.
-Samhain Configuration
File integrity checking / host-based intrusion detection
-Linux Socket Monitor
Monitors created sockets and compares against a database.
-Enforce LCAP limitations
Limits kernel capabilities.
-Install and configure Mod_Security w/mildly aggressive ruleset
Used to prevent web attacks.
-Email Virus Scanning Configuration
Setup some kind of email virus scanning depending on your MTA
-System Integrity monitor
Tracks downed services and attempts to restart them.
-RPM Package Audit
Removal of unneeded rpm packages, which could sometimes bring a hole for exploitation.
-Default User Audit
Removal of unneeded/unused default system users
-Default Group Audit
Removal of unneeded/unused default system groups
-Check/secure configuration defaults on common services.
-Mod_dosevasive
Evasive maneuvers module for Apache to prevent dos type attacks on apache.
Customized Security Solutions - Start at $100
Hourly Work Rate - $30/hr
Need something special done? Just email sales@rack911.com and ask. We can do it!
Contact sales@rack911.com for more information. There is a 2 day turnaround for all work.