Results 1 to 5 of 5
  1. #1

    How to protect vps hosting from being hack

    I want to know how can i protect my vps hosting ?
    should i use antivirus?

  2. #2
    Join Date
    Apr 2011
    Las Vegas, NV
    Your concern is rootkits, which is a virus that provides server privileges without the administrators knowledge. There is no real-time blocker for rootkits, but there are a few scanners. Among those, rkhunter and ckrootkit are both free and popular. I run ckrootkit daily using cron, and the output is emailed to me so I can review it.

    What most server admins are concerned with is their server being either the victim of a DDoS attack, or an unknowing participant. You should install some or all of the following security applications if you run a commercial hosting server. All of these security measures are free.

    • mod_evasive
    • mod_secutity
    • APF (Advanced Policy Firewall)
    • rkhunter or ckrootkit
    • Unless you really need it, disable recursive DNS lookups.
    • Run SHH either on a non-standard port (not port 22), or with authorized key access only.

    You need to apply Linux updates regularly (such as yum) to plug security holes in applications. One thing I promise; if you let your updates go for a long enough time you'll get rooted sooner or later. The ankle-biters of the world never give up.
    Last edited by ajonate; 05-09-2011 at 12:23 PM.

  3. #3
    Join Date
    Oct 2010
    There are many tutorials on how to do this. Just Google.
    Hosting is like a box of chocolates, you never know what you're gonna get.

  4. #4
    Join Date
    Nov 2010

    I use:
    CSF firewall
    and CXS+Mailscanner for rootkits, bad permissions, execs, exploits etc.
    Also, I use ClamAV

    Be sure tu use a good strong password(try and never save it in browsers and FTP clients. Also you could try do use SSH public key instead of password and use another user instead of root, but that's a little bit of ovekill.
    cPanel HelpNet - cPanel, Linux, Virtualization tutorials, guides and more

  5. #5
    You should disable (disable_functions in php.ini) bad (and with that useless too) commands in PHP too. This commands are those which can start/end daemons/processes and execute anything via ssh as root or similar. Most of the scripts (nearly all) work without them and they are just a security risk.

Similar Threads

  1. how i can protect my vps
    By tt2020 in forum Hosting Security and Technology
    Replies: 18
    Last Post: 03-14-2011, 04:08 AM
  2. Are VPS Servers Easier to Hack Into?
    By MyNameNow in forum VPS Hosting
    Replies: 30
    Last Post: 03-26-2010, 11:55 PM
  3. Some one trying to hack my VPS
    By dotflyer in forum VPS Hosting
    Replies: 14
    Last Post: 01-26-2008, 10:38 AM
  4. Br0keN-Pr0xy hack - FIX (the popular index defacement hack)
    By layer0 in forum Hosting Security and Technology Tutorials
    Replies: 5
    Last Post: 09-09-2006, 01:23 PM

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts