So on the new server Im getting they have the firewall option for 80 bucks a month. I know I can prob install it for free but is this the best choice? What is the best way to protect your server and from what exactly? like hacking, worms? How do you protect your server?

Hi,

I have the same problem, having a dedicated server and have no idea if this server is safe against all this hacking stuff...

My next server is getting some maintenance from some professionals and I hope I can trust that server (or me) a little more...

Having a dedicated server comes with tremendous responsibility. You really should secure/harden/setup the server as soon as it comes online. A firewall is only one of many defenses and of course it is only as effective as how well it is configured. Below is a very basic list of tasks to complete on a new dedicated server. Don't forget that security is also an ongoing task and not only important when a server is first deployed.

* SIM - (System Integrity Monitor) - 24x7 Internal Monitoring of services.
* SPRI - (System Priority) - Sets priority to current processes being run on your server, decreasing load 10-25%.
* PRM - (Process Resource Monitor) - Monitors all resources used by all processes and if a process is being flooded or causing high load on the server, it is killed.
* BFD - (Brute Force Detection) - Detects brute force connections and automatically enters the offending IPs into the firewall to be blocked.
* LES - (Linux Environment Security) - Enforces root-only permissions on system binaries as well as other restrictions on system programs.
* Exiscan with Clam-Antivirus - Detect emails containing viruses or spam and discard them so your server is not the origin of the spread of today’s common viruses or spam emails.
* /tmp & /var/tmp hardening – We harden /tmp and /var/tmp so no malicious scripts can be executed from the commonly used directory.
* /dev/shm & /proc hardening - Another place hackers tend to upload files to is /dev/shm. This directory is hardened as well.
* Optimize FTP Server for faster connections.
* Optimize MySQL & Apache to reduce load and speed up connections.
* Secure Apache to reduce the amount of information visible about a server's software making it less vulnerable.
* Host.conf Hardening - Prevents IP spoofing and prevents DNS poisoning.
* CHKRootKIt – Simple script that detects software used by hackers. It scans once a day and emails the client if any suspicious scripts are found.
* Disabling Unused Services – We disable unused services to prevent them from being exploited.
* Firewall Installation - APF (Advanced Policy Firewall) iptables based firewall and anti-dos rulesets.
* TCP/IP Hardening – Prevents DDOS and SYN-Flood attacks.
* Logwatch – Sends a daily report to the client with all activity that has taken place on the server for that day.
* Operating System Optimization – Optimize the OS for faster operation and load reduction.
* Remove unused software – We remove unneeded software to minimize the number of software that could possibly be exploited.
* Remove unused services – Unused services are shutdown and their ports closed.
* Libsafe - Libsafe prevents buffer overflows and scans for exploitable software and notifies the client daily if any is found.
* eAccelerator / Zend Optimizer / Ioncube Installation - eAccelerator dramatically decreases page loading times by caching php scripts in a compiled state.
* SSH Server Hardening - locks down and hardens the SSH server.
* Nessus Security Scan - We perform a full system security scan on your server and patch any vulnerabilities found.
* Everything in the Essential Server Setup Package.
* Mod_Security - Adds another layer of security for your web applications.
* Mod_Evasive - Provides evasive action in the case of a DoS attack.
* AIDE - File Integrity Detection System.
* Smartd - Hard Drive reliability monitor. Provides i/o analysis and failure rates.
* RKHunter - Comprehensive security analysis.
* Disable php functions - Disabling potentially harmful php functions.
* LSM (Linux Socket Monitor) - Identifies rogue services.
* Spam Protection - Enables mail server to use spam blacklists, filtering out 99% of internet spam.
* Spamassasin Rules - Extensive spamassassin rulesets to help combat many common types of spam.
* Dictionary Attack Prevention (Cpanel only) - Detects and blocks incoming dictionary attacks to your email system.

Thanks hytekjosh that was an awsome and informative post. Luckily I have somebody who knows what they are doing but I hate depending on others for info so that gave me lots of stuff to read up on.

Can you get a dedicated with all this set up for you.I need one (or 2) and its way over my head

I was wondering about that too, I was using the planet and now I see they only have the firewall and antivirus software available. Anybody with the planet know about all the above being included?

I think this information is posted here because hytekjosh is able to offer this kind of managed servers ;)

yeah hytekjosh... thanks for the info u know sometimes when u get it third had the information loses key componets.

I'm with Platinum Server Management, it's $29.00 a month.
They will secure your server, and if your server is down for more then 15 minutes they will contact your server provider to ask for a reboot.

Theo

are there any other server protection companies out there anybody recommends?

i want to go with a dedicated fs as well, but i'll need someone to set it up properly as hytekjosh mentioned.

i would be willing to pay a server protection service to keep things tight. imho thats money well spent.

Learn linux, learn bind, learn apache, learn bash... Those are a must if you want to stay secure. A firewall won't protect you from everything, you need to understand when and when not to implement one.