First steps in securing your website and server
On the server side
- secure the /tmp /dev/shm and /usr/tmp folders as hackers upload expliots to these directories
- install logwatch
- run a rookit scanner often such as chkrootkit and rkhunter
- install a firewal such as apf firewall and bfd to prevent brute force logins
- setup mod_security to filter out certain types of scripts and input from malicious users.
On the website side
- be extremely cautions with any scripts that allow uploads, limit them by extention and limit access to only certain users
- For contact pages such as formmail, enable referral checking, ip based blocks and image verification in your code.
- Update any general products such as PHPBB, OsCommerce and others often. Check their websites for patches or security bulletins.
No one has commented on this page yet.
WebHostGear.com is a hosting directory, not a web host.
Copyright © 1998-2024 WebHostGear.com