First steps in securing your website and server Published: Sep 13, 2005
  • Rating


First steps in securing your website and server

On the server side
- secure the /tmp /dev/shm and /usr/tmp folders as hackers upload expliots to these directories
- install logwatch
- run a rookit scanner often such as chkrootkit and rkhunter
- install a firewal such as apf firewall and bfd to prevent brute force logins
- setup mod_security to filter out certain types of scripts and input from malicious users.

On the website side
- be extremely cautions with any scripts that allow uploads, limit them by extention and limit access to only certain users
- For contact pages such as formmail, enable referral checking, ip based blocks and image verification in your code.
- Update any general products such as PHPBB, OsCommerce and others often. Check their websites for patches or security bulletins.

  • Rating


Related Articles

Comments (0)

No one has commented on this page yet.

Add Your Thoughts is a hosting directory, not a web host.

Copyright © 1998-2019