| Preinstalled Services for cPanel/WHM servers |
|
| << Go Back to Previous Page |
 |
| Initial Setup |
• Hostname configuration
• DNS ns1/ns2 setup
• Incremental backups daily, weekly, monthly (servers with dual drives)
• Secure root password set
• Awstats configured |
|
 |
|
| |
|
| Precompiled Apache and PHP Settings |
• Imagemagick
• GD
• GD2
Zend
• Curl w/SSL
• MySQL 5.xx
• PHP 5.xx |
|
|
|
| |
|
| Preliminary Security Configuration |
• We secure /tmp (noexec, nosuid, nodev )
• Install mod_security
• Enable phpsuexec for secure permissions
• Secure /root/.my.cnf
• Block all outgoing connections to port 22 using iptables
• Compile latest secure and stable kernel
• CSF firewall basic install
• C and C++ compilers are disabled. Many canned exploits require a working C
on the system. |
|
|
|
| |
|
| Linux Environment Security |
• Apply root-only permissions on binaries, path traversal, immutable bit on rpm,
shell scripts
• Install Linux socket monitor- Designed to track changes to network sockets and
Unix domain sockets |
|
|
|
| << Go Back to Previous Page |
 |
| |
