Apache Security

Apache httpd hardening

Introduction
Apache is one of the most widely-used and popular web servers. It is also one of the most secure web servers available. In this article, I will explain some tips and tricks that will secure your Apache server.

This is a generic ‘quick n dirty’ hardening profile.

 
Hide version:

 

 
Turn Off Server-Side Includes …Read More

Protecting Apache Server From Denial-of-Service Attacks

Protecting Apache Server From Denial-of-Service Attacks

Protecting Apache Server From Denial-of-Service Attacks
Denial-of-Service (DoS) attack is an attempt to make a machine or network resource unavailable to its intended users, such as to temporarily or indefinitely interrupt or suspend services of a host connected to the Internet. A distributed denial-of-service (DDoS) is where the attack source is …Read More

CSF ConfigServer Firewall

Install and Configure CSF ConfigServer Firewall

Install and Configure CSF ConfigServer Firewall
About CSF Firewall
ConfigServer Security and Firewall, also known as CSF, is an opensource software firewall application. It is working based on iptables. Firewall configuration script created to provide better security for your server while giving you an easy to use, advanced interface for managing your firewall …Read More

20 IPtables Examples For New SysAdmins

Configure FirewallD in RHEL/CentOS 7 and Fedora 21/22

In a previous post I’ve showed how to disable firewalld and roll back to our favorite post-systemd iptables firewall. In this post we gonna see how to Configure FirewallD in RHEL/CentOS 7 and Fedora 21/22.

Firewalld is a dynamic daemon to configure and manage firewalls (iptables rules typically) with support for …Read More

Email Security - Blocking outgoing spoofed emails from cPanel server

Email Security – Blocking outgoing spoofed emails from cPanel server

As a company that proactively manages web hosting servers, we do regular security audits on them. One of the recurring issues we have seen with un-managed servers is loss of server reputation, and service up-time through outbound spam mails.

To combat spam, the first step is finding a common pattern that …Read More

Chmod all files to 644 and all folders to 755 of a directory

Chmod all files to 644 and all folders to 755 of a directory

Why to chmod ? Using suPHP or FastCGI you gonna notice that they need special permissions. In dso for example 777 is the default. Having those permissions using suPHP is first

dangerous and secondly
not recommended

Especially when almost all providers forbid 777 when using suPHP. So we need to change permissions at …Read More