Page 16 of 18 FirstFirst ... 61415161718 LastLast
Results 226 to 240 of 259

Thread: A Beginner's Guide to Securing Your Server

  1. #226
    Registered User
    Join Date
    Jan 2008
    Posts
    2

    Default :Fail vs :Blackhole

    Wouldn't blackhole be more appropriate for the peeps who are limited in the way of SMTP relays? That is certainly why I found this post : )

  2. #227
    Registered Member
    Join Date
    Nov 2005
    Location
    Egypt, Cairo
    Posts
    35

    Default Configure Modsecurity 2 [Anti Exploits]

    Reference from # http://forum.hyperois.com/viewtopic.php?t=23

    Hello,

    This an tutorial for Server Administrators who running Web Server,
    this an Rules for Apache 2.x for better Security !

    P.S: you must have Apache 2.x and Modsecurity_2 Installed

    Step 1) Downloading the Rules file
    Code:
    cd /etc
    wget http://hyperois.com/files/modsec2_rules.tar.gz
    Step 2) Uncompress files
    Code:
    tar -xzvf modsec2_rules.tar.gz
    Step 3) Edit modsec2.conf
    Code:
    vi /usr/local/apache/conf/modsec2.conf
    Step 4) Copy and Paste this rules into your modsec2.conf

    Code:
    <IfModule mod_security2.c>
    SecRuleEngine On
    #  "Add the rules that will do exactly the same as the directives"
    # SecFilterCheckURLEncoding On
    # SecFilterForceByteRange 0 255
    SecAuditEngine RelevantOnly
    SecAuditLog logs/modsec_audit.log
    SecDebugLog logs/modsec_debug_log
    SecDebugLogLevel 0
    SecDefaultAction "phase:2,deny,log,status:406"
    SecRule REMOTE_ADDR "^127.0.0.1$" nolog,allow
    Include "/usr/local/apache/conf/modsec2.user.conf"
    
    SecServerSignature "Rules Powered By HyperOIS.com"
    
    #First, add in your exclusion rules:
    #These MUST come first!
    Include /etc/modsecurity/exclude.conf
    
    #Application protection rules
    Include /etc/modsecurity/rules.conf
    
    #Just in Time Patches for Vulnerable Applications
    Include /etc/modsecurity/jitp.conf
    
    #Comment spam rules
    Include /etc/modsecurity/blacklist.conf
    
    #Bad hosts, bad proxies and other bad players
    Include /etc/modsecurity/blacklist2.conf
    
    #Bad clients, known bogus useragents and other signs of malware
    Include /etc/modsecurity/useragents.conf
    
    #Known bad software, rootkits and other malware
    Include /etc/modsecurity/rootkits.conf
    
    #Additional rules for Apache 2.x ONLY!  Do not add this line if you use Apache 1.x
    Include /etc/modsecurity/apache2-rules.conf
    
    </IfModule>
    Step 5) save and exit the file by clicking escape then typing
    Code:
    :wq
    Step 6) lets Apply the new setting by restarting Apache
    Code:
    services httpd restart
    or
    Code:
    /etc/init.d/httpd restart

  3. #228
    Registered User
    Join Date
    Dec 2008
    Posts
    4

    Default I'm new, thank you

    so much for this

  4. #229
    Registered User
    Join Date
    Jan 2009
    Location
    chicago
    Posts
    3

    Default

    I appreciate the info on fetting out trogan horses. I am pretty much a newbie and have wondered if there was a way to scan for someone feeding off my bandwidth.

  5. #230
    Registered Member
    Join Date
    May 2003
    Posts
    231

    Default

    How can I check which modsec config file is actually being used ?

    I have several different ones, and I'm not sure.

    Thanks

  6. #231
    Registered Member
    Join Date
    Aug 2008
    Posts
    7

    Default

    When trying to start apf.

    Code:
    root@svc-235 [/etc]# /usr/local/sbin/apf -s
    : command not foundline 13:
    : command not foundline 21:
    : command not foundline 24:
    : command not foundline 28:
    : command not foundline 30:
    : command not foundline 34:
    : command not foundline 40:
    : command not foundline 52:
    : command not foundline 58:
    : command not foundline 66:
    : command not foundline 72:
    : command not foundline 78:
    : command not foundline 83:
    : command not foundline 89:
    : command not foundline 93:
    : command not foundline 100:
    : command not foundline 113:
    : command not foundline 118:
    : command not foundline 127:
    : command not foundline 132:
    : command not foundline 136:
    : command not foundline 140:
    : command not foundline 144:
    : command not foundline 149:
    : command not foundline 159:
    : command not foundline 167:
    : command not foundline 173:
    : command not foundline 181:
    : command not foundline 187:
    : command not foundline 191:
    : command not foundline 195:
    : command not foundline 200:
    : command not foundline 206:
    : command not foundline 209:
    : command not foundline 212:
    : command not foundline 215:
    : command not foundline 218:
    : command not foundline 221:
    : command not foundline 224:
    : command not foundline 229:
    : command not foundline 235:
    : command not foundline 241:
    : command not foundline 247:
    : command not foundline 255:
    : command not foundline 262:
    : command not foundline 268:
    : command not foundline 275:
    : command not foundline 282:
    : command not foundline 288:
    : command not foundline 295:
    : command not foundline 300:
    : command not foundline 304:
    : command not foundline 309:
    : command not foundline 314:
    : command not foundline 321:
    : command not foundline 333:
    : command not foundline 342:
    : command not foundline 351:
    : command not foundline 355:
    : command not foundline 365:
    : command not foundline 368:
    : command not foundline 371:
    : command not foundline 375:
    : command not foundline 389:
    : command not foundline 392:
    : command not foundline 395:
    : command not foundline 398:
    : command not foundline 402:
    : command not foundline 414:
    : command not foundline 417:
    : command not foundline 420:
    : command not foundline 431:
    : command not foundline 434:
    : command not foundline 443:
    : command not foundline 444:
    : command not foundline 445:
    : command not foundline 446:
    : command not foundline 452:
    : command not foundline 453:
    : command not foundline 454:
    : command not foundline 455:
    : command not foundline 461:
    : command not foundline 462:
    : command not foundline 463:
    : command not foundline 464:
    : command not foundline 472:
    : command not foundline 474:
    : command not foundline 475:
    : command not foundline 484:
    : command not foundline 485:
    : command not foundline 486:
    : command not foundline 487:
    : command not foundline 497:
    : command not foundline 498:
    : command not foundline 499:
    : command not foundline 500:
    : command not foundline 501:
    : command not foundline 502:
    : command not foundline 503:
    : command not foundline 509:
    : command not foundline 513:
    : command not foundline 518:
    : command not foundline 522:
    : command not foundline 525:
    : command not foundline 529:
    : command not foundline 533:
    : command not foundline 537:
    : No such file or directory: /etc/apf
    /usr/local/sbin/apf: line 136: eout: command not found
    /internals/.last.full: No such file or directory
    touch: missing file operand
    Try `touch --help' for more information.
    chmod: missing operand after `600'
    Try `chmod --help' for more information.
    touch: missing file operand
    Try `touch --help' for more information.
    chmod: missing operand after `600'
    Try `chmod --help' for more information.
    touch: missing file operand
    Try `touch --help' for more information.
    chmod: missing operand after `600'
    Try `chmod --help' for more information.
    /usr/local/sbin/apf: line 152: devm: command not found
    /vnet/vnetgen: No such file or directory
    /firewall: No such file or directoryapf
    /usr/local/sbin/apf: line 160: bandmin: command not found
    /usr/local/sbin/apf: line 162: eout: command not found
    /internals/.apf.restore: No such file or directory
    /usr/local/sbin/apf: line 170: eout: command not found

  7. #232
    Registered User
    Join Date
    Jan 2009
    Posts
    2

    Default

    Thank you all, just finished reading the whole thread, has solved lots of questions! Thumbs up!

  8. #233
    Registered User
    Join Date
    Feb 2009
    Posts
    2

    Thumbs up

    Thank you so much for this

    My son just made two sites for my business... and I have been hearing a lot about hacking and viruses on websites... This will stop that right?

    -Mina

  9. #234
    Registered Member persianwhois's Avatar
    Join Date
    Apr 2007
    Location
    Mahallat
    Posts
    114

    Default

    Quote Originally Posted by MinaDesign View Post
    Thank you so much for this

    My son just made two sites for my business... and I have been hearing a lot about hacking and viruses on websites... This will stop that right?

    -Mina
    No, apf just can manage your server port or something such as trrafic shape.
    If you want to have a secure server, you must set correct permission for files and directory and keep you server up2date.
    Remember, your server security can't be 100% secure.
    Regards,
    Masood Yarmohammadi

  10. #235
    Registered Member This forum account has been confirmed by cPanel staff to represent a vendor. chirpy's Avatar
    Join Date
    Jun 2002
    Location
    Go on, have a guess
    Posts
    13,499

    Default

    Quote Originally Posted by natasha91 View Post
    Do you think my server will be safe after this?
    Nothing you do to a server connected to the internet will make it safe. It should make it more secure, but it's something you have to constantly work on.
    Jonathan Michaelson

    cPanel Server Configuration, Security and Antivirus/AntiSpam Services
    http://www.configserver.com

  11. #236
    Registered Member
    Join Date
    Dec 2004
    Posts
    10

    Default Big Thread -- Which Info Applies / Which Doesn't

    I used this thread back in 2005-2006 to secure my first dedicated server. But this a looong thread and a lot has changed since '04 when it started. Is there a concise version of this? Which part no longer applies? Should I start at the beginning and take most of the advice?

    Please give a dawg some guidance.

  12. #237
    Registered Member
    Join Date
    Apr 2005
    Posts
    99

    Default

    Quote Originally Posted by gcutrer View Post
    I used this thread back in 2005-2006 to secure my first dedicated server. But this a looong thread and a lot has changed since '04 when it started. Is there a concise version of this? Which part no longer applies? Should I start at the beginning and take most of the advice?

    Please give a dawg some guidance.
    Agree with this - hope someone can bring this thread up-to-date.

    I'd be more inclinced to use CSF thesedays too - used it on our last server

    Maybe Chirpy could write up a quick guide but put it on his site instead? (Easier to edit then)

  13. #238
    Registered Member
    Join Date
    Jul 2009
    Posts
    5

    Default

    Thanks for sharing the info through this thread. I am having few problems with my reseller hosting. I am going to following these instructions and change the setting accordingly. This may help solve the problems that i am having at the moment.

    Thanks again

  14. #239
    Registered User
    Join Date
    Sep 2009
    Posts
    4

    Default

    Hi Giselle,

    If you are not able to fix the problem, please feel free to post the issue on the forum. We will do the needful for you.

  15. #240
    BANNED
    Join Date
    Jun 2005
    Posts
    2,023

    Default

    Quote Originally Posted by Giselle_Ceballo View Post
    Thanks for sharing the info through this thread. I am having few problems with my reseller hosting. I am going to following these instructions and change the setting accordingly. This may help solve the problems that i am having at the moment.

    Thanks again
    Be careful particularly in regard to Cpanel setting recommendations as this thread as already pointed out is incredibly old though most of the system hardening information should still be relevant.

    I agree that someone should post an updated thread on this topic and I suppose I would be the obvious candidate so I'll try to do exactly that when I get a little free time to write some updated pointers for everyone
    Last edited by Spiral; 10-22-2009 at 03:16 PM.

Page 16 of 18 FirstFirst ... 61415161718 LastLast

Similar Threads

  1. Replies: 8
    Last Post: 10-29-2008, 01:02 PM
  2. Guide to securing a server?
    By hexstar in forum cPanel & WHM Discussions
    Replies: 4
    Last Post: 09-04-2007, 10:10 PM
  3. Replies: 25
    Last Post: 10-01-2006, 12:44 AM
bargain