The Community Forums

Interact with an entire community of cPanel & WHM users!
  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

server protection.

Discussion in 'General Discussion' started by Trevs, Jan 29, 2006.

  1. Trevs

    Trevs Member

    Joined:
    Dec 11, 2005
    Messages:
    21
    Likes Received:
    0
    Trophy Points:
    1
    cPanel Access Level:
    Root Administrator
    hi people,
    I have been having some trouble with people trying to hack my server. I have had a look at /var/log/security and i have found well over 100 attemts by more than 1 ip address using random user names to get on ssh2. Could you please explain what there are and also how o protect my server.

    I have tryed to install apf but when i try to start it i get eth0: error fetching interface information: Device not found and then it stops.

    Thanks for all the help.

    Trev
     
  2. S-Combs

    S-Combs Well-Known Member

    Joined:
    Jun 10, 2004
    Messages:
    78
    Likes Received:
    0
    Trophy Points:
    6
    I highly recommend getting APF to work properly then add BFD to that (Brute Force Detection).

    In addition to that, Install mod_security with a good ruleset

    This script here will help you to tighten up your server as well as install APF
    http://forums.cpanel.net/showpost.php?p=202971&postcount=3
     
  3. Murtaza_t

    Murtaza_t Well-Known Member

    Joined:
    Jan 24, 2005
    Messages:
    476
    Likes Received:
    0
    Trophy Points:
    16
    Location:
    Earth
    cPanel Access Level:
    Website Owner
    This is a common issue and has been discussed alot of time, you need to search this forum :) .

    Do as what S-Combs says and also change the default ssh port from 22 to any other port in /etc/ssh/sshd_config
    Please do not forget to allow the new port in your firewall :D
     
Loading...

Share This Page