Steven
05-14-2006, 07:24 PM
Extreme Security Plan
Security is on thing that is often overlooked. Not keeping up with security can cause your business to go from flourishing to non-existent. We have devised a security plan that is perfect for most web solutions. Before we begin the security plan, your server will be investigated for prior attacks and/or current malicious activity. Your server will also be briefly scanned for rookits.
DO NOT LET SOMEONE TAKE ADVANTAGE OF YOU!
3rd party software:
Install and configure Mod_security for apache
Install and configure Mod_evasive for apache
Installation of APF (Advanced Policy Firewall)
Installation of BFD (Brute Force Protection)
Installation of PRM (Process Resource Monitor)
Installation of SIM (System Integrity monitor)
System hardening:
Limit compiler & fetch utilities access to root only
Correct folder permissions to prevent directory transversal
Disable unused services
Update all server/control panel software
Remove unneeded operating system packages
Upgrade kernel to latest os release
Email Security:
Configure Anti-Spam solution for email
Configure Anti-Virus solution for email
Configure Forge Helo protection
Mail Header patch (http://choon.net/php-mail-header.php?)
Services harden:
MySQL - Ensure root password is set
SSH - Ensure openssh is using only protocol 2
Disable certain php functions (system,exec,shell_exec) - Not performed by request
Temporary Space:
Enforce noexec & nosuid on tempoary directorys such as /tmp and /var/tmp
Remove apache proxy directory (cpanel servers)
Enforce noexec on tmpfs which as shm (shared memory) and ramdisks
Misc. Hardening:
Disable IP Source Routing
Disable ICMP Redirect Acceptance
Enable IP Spoofing Protection
Enable syncookie Protection
Enable misc. sysctl settings
Harden host.conf
Logging:
Logwatch installation
Chkrootkit installation and report cronjob
Rkhunter installation and report cronjob
Misc. Software / Configuration (add $15 dollars)
MRTG
Zend optimizer
Compile php with most common functions
Eaccelerator or APC (can be traded for ioncube)
Optimize MySQL & Apache (depends on hardware's ability)
PRICE: $80
We accept 2checkout and paypal
To order email: sales@rack911.com
http://www.rack911.com
Thank you,
Steven Ciaburri
Security is on thing that is often overlooked. Not keeping up with security can cause your business to go from flourishing to non-existent. We have devised a security plan that is perfect for most web solutions. Before we begin the security plan, your server will be investigated for prior attacks and/or current malicious activity. Your server will also be briefly scanned for rookits.
DO NOT LET SOMEONE TAKE ADVANTAGE OF YOU!
3rd party software:
Install and configure Mod_security for apache
Install and configure Mod_evasive for apache
Installation of APF (Advanced Policy Firewall)
Installation of BFD (Brute Force Protection)
Installation of PRM (Process Resource Monitor)
Installation of SIM (System Integrity monitor)
System hardening:
Limit compiler & fetch utilities access to root only
Correct folder permissions to prevent directory transversal
Disable unused services
Update all server/control panel software
Remove unneeded operating system packages
Upgrade kernel to latest os release
Email Security:
Configure Anti-Spam solution for email
Configure Anti-Virus solution for email
Configure Forge Helo protection
Mail Header patch (http://choon.net/php-mail-header.php?)
Services harden:
MySQL - Ensure root password is set
SSH - Ensure openssh is using only protocol 2
Disable certain php functions (system,exec,shell_exec) - Not performed by request
Temporary Space:
Enforce noexec & nosuid on tempoary directorys such as /tmp and /var/tmp
Remove apache proxy directory (cpanel servers)
Enforce noexec on tmpfs which as shm (shared memory) and ramdisks
Misc. Hardening:
Disable IP Source Routing
Disable ICMP Redirect Acceptance
Enable IP Spoofing Protection
Enable syncookie Protection
Enable misc. sysctl settings
Harden host.conf
Logging:
Logwatch installation
Chkrootkit installation and report cronjob
Rkhunter installation and report cronjob
Misc. Software / Configuration (add $15 dollars)
MRTG
Zend optimizer
Compile php with most common functions
Eaccelerator or APC (can be traded for ioncube)
Optimize MySQL & Apache (depends on hardware's ability)
PRICE: $80
We accept 2checkout and paypal
To order email: sales@rack911.com
http://www.rack911.com
Thank you,
Steven Ciaburri