Web Hosting :: CentOs VPS System More Secure?

Secure VPS I Done
i'v been Installed all these In my VPS server

1)Disable Functions:
system,system_exec,shell,shell_exec,exec,passthru,escapeshellarg, escapeshellcmd,proc_close,proc_open,ini_alter,dl, popen,parse_ini_file,show_source
and Enable The Safe_Mode.
---------------------------------------
2)Hide_your_apache_Version
---------------------------------------
3)Install LogWatch in a Server
---------------------------------------
4)Mod-Security-Install
---------------------------------------
5)Root-Login (IP Sent).
---------------------------------------
6)Disable Login Root and Change SSH Port .
---------------------------------------
7)Installing eAccelerator .
---------------------------------------
8)Install Nobody Check
---------------------------------------
9)Updateing All of
/scripts/upcp
/scripts/updatenow
/scripts/sysup
/scripts/fixeverything
/scripts/exim4
/scripts/easyapache
/scripts/securetmp
----------------------------------------

but doesnt know yet what the better to secure my vps ..

and about Firewall two .. wich firewall better

CSF or APF+BFD ..

View Replies! View Related

How To Secure The VPS
Check out this blog and suggest what thing more can be added to secure the vps and i think this information database can be helpful for newbies and intermediate users which like to secure the VPS.. which sometimes exploited due to bad scripts.

[url]

View Replies! View Related

How Secure /tmp On Vps
how can i secure my tmp on vps?

mount -o loop,noexec,nosuid,rw /dev/tmpMnt /tmp

it isnt work on vps and i have this error:

[root@ dev]# mount -o loop,noexec,nosuid,rw /dev/tmpMnt /tmp
mount: could not find any device /dev/loop#

View Replies! View Related

Secure UK VPS - DPA
Ive been using Dreamhost for years and there great however, One of my clients needs has drastically changed and they are now required to comply with the Data Protection Act.

In particular this bit make Dreamhost a bit of a no go due to them being in California:

"Personal information may not be transmitted outside the EEA unless the individual whom it is about has consented or adequate protection is in place, for example by the use of a prescribed form of contract to govern the transmission of the data."

Unless my client goes and asks all 1000+ customers they are kinda in a bit of a quandary. So here's what im looking for:

Secure UK Datacenter, eg Easynet, Blue Square etc
128mb RAM, 256mb Burstable, 20GB storage, 500GB transfer
LAMP Environment
Support within Business Hours
Control Panel

View Replies! View Related

Which The Best Operational System For Vps?
which of these operational systems is the best one for one vps?CentOS 4 (32bit)

CentOS 4 (64bit)
CentOS 5 (32bit)
Fedora Core 3 (32 bit)
Fedora Core 4 (32 bit)
Fedora Core 5 (32bit)
Debian Sarge 3 (32bit)
Gentoo 3 (32 bit)
Opensuse 10 (32 bit)
Suse 9 (64 bit)
Ubuntu 6 (32bit)
Windows 2003 Std

View Replies! View Related

Secure VPS After Many Hack Attacks
my VPS provider just rebuilt my VPS after many hack attacks.

From some days I am getting emails from firewall that someone login to my VPS/mySQL using SSH.

I don't know what they do, but they don't disturb any account. Only some downtime feel during this. But last night my VPS stop working so my provider rebuilt VPS.

how I can secure my VPS now. I have Cpanel installed.

View Replies! View Related

Secure Connection To Windows VPS
I'm transitioning from a shared account to a VPS and am trying to run it as securely as practical.

I've been looking at ways of keeping administrative connections to the server secure. So far I've considered VPN technologies like L2TP/IPSec and RAS but they don't seem suitable for what I need.

I just want a simple encypted, tamper-proof, computer-to-server connection in a Windows Server environment.

View Replies! View Related

How To Secure Your Plesk Based VPS Server
I came across this very detailed step-by-step tutorial on how to secure a Plesk based VPS. It's up-to-date and was just written so the info is accurate.

Here's the link to the full tutorial: ...

View Replies! View Related

How Much Work To Secure/maintain Unmanaged VPS
I've been using a shared account for many years and I want to move to a VPS. I am trying to decide between managed and unmanaged.

How much time and effort does it takes to set up, harden, and maintain a VPS?

I'd be running LAMP and email, mainly. I want to put time into developing my sites, not fretting about the server.

I guess I'd learn a lot by managing my own VPS, but what are the chances of getting hacked before I learn enough?

View Replies! View Related

Do VPS Or Dedicated Allow Change File System
well i am running into the problem of hitting 30k subdir limit. so i need to change to a file system that supports something much bigger.

question is, do hosts allow this ?

View Replies! View Related

Install Xen Vps System To Test Out
I'd like to install xen vps system to test out instead of paying Virtuozzo $1k+ for licensing.

I found this article:
[url]

I installed this on Centos 5 server. I got one tiny problem now:

[root@server ~]# virt-manager
Traceback (most recent call last):
File "/usr/share/virt-manager/virt-manager.py", line 304, in ?
main()
File "/usr/share/virt-manager/virt-manager.py", line 224, in main
import gtk
File "/usr/lib/python2.4/site-packages/gtk-2.0/gtk/__init__.py", line 76, in ?
_init()
File "/usr/lib/python2.4/site-packages/gtk-2.0/gtk/__init__.py", line 64, in _init
_gtk.init_check()
RuntimeError: could not open display

Also, that tutorial doesn't explain how to create actual vps

Anyone care to explain? Isn't there some web gui available for xen too?

View Replies! View Related

Virtuozzo VPS System Usage Meter Wrong
I have noticed a weird thing lately with two VPS accounts. Virtuozzo's system usage meter on the Resources page creeps up to 100% over the course of 24 hours or so and stays there, but stays green and I don't get any QoS alerts. The servers both seem to be running fine, and I haven't had any crashes. One VPS is running a few Wordpress blogs.

The other is running some Joomla sites.

Both are running Virtuozzo on CentOS 4.7 i686 with WHM 11.24.2 and cPanel 11.24.4-R32486.

In the past, when the system usage meter in Virtuozzo got anywhere near 100%, it turned yellow or red, I had sites go down, and all kinds of QoS alerts for privmpages were thrown. It turned out back then that I had a bad PHP script eating tons of memory with too many MySQL queries. That doesn't appear to be the case here, since I'm not having any apparent problems with either server. It seems like a "non-problem" but it has me concerned because I'm used to using that system usage meter in Virtuozzo to keep an eye on the health of the VPS..

When I look at memory used in WHM (WHM->Server Status->Server Status) it shows only 31% used, which is what I used to see in Virtuozzo.

When I run free, I get:

root@server [~]# free
total used free shared buffers cached
Mem: 524288 133804 390484 0 0 0
-/+ buffers/cache: 133804 390484
Swap: 0 0 0
When I run Free, I get:
root@server [~]# Free
Memory limit...: 8388604 MB (burstable: 8388604 MB)
Current usage..: 120 MB (0%) (requested: 264 MB)
Free memory....: 8388484 MB (100%)

Initially, I suspected it was another problem with MySQL, and restarting MySQL does drop the system usage meter down to ~31% in Virtuozzo for a while--without changing the actual memory used on the System Processes page--but the memory usage for MySQL with Virtuozzo pegged is only 6.23% in WHM.

Here's the really weird thing: If I look at Virtuozzo->System Processes it shows only 0.4% (I think they mean 40%) of total memory used, half of which is mysqld and the rest is spamd.

With no sign of problems, it looks like Virtuozzo is incorrectly reporting memory usage in the system usage meter, but correctly in the system processes list.

The web host's response was:

We use SLM for managing VPSes. This enforces your per VPS limits and doesn't let your VPS use more then it should be. It sounds like you guys may have some memory hogs in your applications.

Have you guys considered cutting down some of the unneeded plugins and stuff?

That doesn't make any sense to me given the disparity between the memory usage meter and the amount of memory usage reported in System Processes and with free/Free as well as the lack of QoS alerts, but maybe SLM prevents any alerts? I don't want to let a memory hog run free on my system if one exists.

View Replies! View Related

Moving From VPS - Choosing Dedicated System Setup
I would really appreciate some advice about changing from a VPS to a dedicated server and getting a good 24/7 server management service

I know I need more Ram than I’ve got now and I know I need a managed server. Beyond that I’m not sure what I need and all the info I’m reading is making me more uncertain and more worried about making the wrong decision.

I moved from shared hosting to VPS a year ago. I have now started to outgrow the VPS.

The VPS has 512 MB Ram, 10% Burstable Resources. The site has been up since the last crash for 78 days but it is maxing out the Ram during the busy parts of the day and has high load averages.

There is one site on the VPS with static HTML pages. Last month’s figures were approximately 186,000 MB of Data transfer and 4,362000 page views. Average of 30,000 visitors per day

I want to add another 4 or 5 sites small sites. Some of those will be XML feed sites. No forums, chat or reselling.

So what to choose?

1.Operating System
CentOS or Fedora Core Linux 6
2.Control Panel
cPanel 11 or Parallels Pro
3.Processor
Single Core or Dual Core
4.Ram
1GB or 2GB
5.Hard Drive
Single with backup, RAID or RAID with backup drive

Server Management Services and Monitoring 24/7
I’m using WebSite Pulse for monitoring at the moment and I’m very happy with them but they don’t do server management. I need a company to secure, protect, update and keep the server running 24/7

platinumservermanagement.com seem to offer a good service for only $29 per month. Don’t know what they are like. They only manage cPanel, don’t know if that’s a good thing or a bad thing. Would appreciate other suggestions.

Basically I’ve got to decide do I stick with current hosting service and move to a dedicated server choosing from the options I have listed or move to another hosting service offering managed VPS with more resources like wiredtree.com. Don’t know what Wired Tree is like just read about them in the forum.

View Replies! View Related

Getting GUI On New CentOS VPS
linux and after several days testing different distributions and a bunch of different ways (e.g. freenx,vnc XFCE ...) I've decided to setup a vnc-server on CentOS-5-i386-minimal and use KDE as a desktop environment.

After reloading my vps with centos-5-i386-minimal, I logged in as root and executed:

Code:

yum update

yum -y groupinstall "KDE (K Desktop Environment)"

yum -y install vnc vnc-server firefox X11 xorg

I then added a user "abt" and set the password. Then I logged in as abt and execute : vncserver, it asked for the password and created the appropriate .vnc directory and files.

I then edited xstartup file and replaced "twm &" with "startkde &" and executed vncserver once again, this created desktop number 2 for me.

The problem is that after running TightVNC(on vista) and entering IPNUMBER:2, It successfully connects to vnc-server but what i get is a black screen with X cursor!

View Replies! View Related

Os Repair For Centos Vps
OS of my customer vps damaged and its must be repair. My customer used censtos and cpane on him server.

My server is openvz based and im used hypervm for manage it.

My customer send a support request to cpanel and they said:

The error is related to the package system on your server, you would need to contact your server provider to have that error corrected.

View Replies! View Related

CentOS 5 64bit VPS
Does anyone know of a VPS provider that can provide a CentOS 5 64bit OS?

View Replies! View Related

PHP5 On Centos OS VPS
how do i install php5 on my linux vps centos OS i want to do that installing because right now using php4 and i want to upgrade to php5 and mySql 5 to my vps. i'm on self managed/unmanage server

View Replies! View Related

CentOS, Debian, Ubuntu Which Is Better For Vps?
Which OS is better in security and easy to use for vps beginner:
CentOS™, Debian™, Ubuntu™, Fedora™, or Gentoo™.?

View Replies! View Related

My VPS Host Won't Upgrade From CentOS 4.7 To 5.4
why a VPS host wouldn't upgrade a VPS from CentOS 4.7 to 5.4? Is there some technical explanation that I'm not privy to?

Hello,

Unfortunately we cannot upgrade the OS on our VPS product. If you would like to go up to CentOS 5, you will need to purchase a dedicated server and we would then be able to migrate all of your accounts to that dedicated server.
Is this something you are interested in? I can get you over to our sales team to discuss getting a dedicated server if you would like.

Regards,

xxxxxxxxxxx

I replied asking if they offered CentOS 5 VPS and this was his reply:

Hello,

Yes, that is correct. As far as I know, that is in development, but I couldn't even begin to speculate when that will be finalized.

Did you wish to be upgraded to a dedicated server?

Regards,

xxxxxxxxxxx

Aside from the extremely annoying upsell at the end of each e.mail, I'm inclined to think I'm going to have to change VPS providers.

View Replies! View Related

Mytop Installation On Centos VPS
I just can't make Mytop work on my Centos VPS. Looks like I made some perl problem. Is there any good working installation tutorial?

View Replies! View Related

Why Is CentOS So Popular With VPS Providers
I've noticed that CentOS is very popular with VPS people...

View Replies! View Related

How Can Secure /tmp /var/tmp In OpenVZ VPS ?
recently I got a VPS from cheapvps.co.uk and so far so good. Im getting used to the VPS enviroment. I tried to follow several guides about how to secure with noexec and nosuid the /tmp and /var/tmp and it did not work.

in http : / / www . webhostingtalk .com/showthread.php?t=474681&highlight=tmp points it must be done from the hosting. Same is said in http : // kb . swsoft . com/article_130_648_en.html.

I asked the hosting to do it and they told me as I got an Unmanaged VPS they cant do it for me.

Do anyone know how can be done ? I dont want to use tmpfs as it uses main memory.

View Replies! View Related

Info On User Preferences For CentOS VPS
info on user preferences when buying a VPS for running CentOS.

Feel free to PM me if you do not want your answers to be publicly displayed.

When you are buying a VPS to run CentOS:

1. Do you want to install the operating system on it or do you want it pre-installed with defaults?

2. Do you want the server to run Gnome desktop or is SSH access enough?

3. If you have it running a desktop, is accessing it using VNC over an SSH tunnel connection acceptable or do you need some other way to access the GUI?

View Replies! View Related

Minimal Services On CentOS/LXadmin VPS
I'm running an VPS account running CEntOS 5 and LXadmin, on a Parallels Virtuozzo platform.

I've did some updates and seems like a few services comes up after the update. I want to keep my VPS running low on resource consumptions, so which are the minimum services I have to keep alive? I'm running a SMF forum (so mysql/php), I use IMAP/qmail, spamassasin enabled. I'm specifically curious about saslauthd and xinetd services, are really need to be enabled?

View Replies! View Related

Im Going To Receive A Plain VPS With CentOs Without The Services
I am going to get a VPS with a plain installation of CentOS. I want to install a free control panel, ISPConfig

I cannot do the instructions in their site [url] because I don't have the CentOS CD with me.

According to that site, I have to install the services (ftpd, httpd, named, mail, exim, php) first before I can install ISPConfig

I dont know how i can install:
httpd (Apache 2.2)
ftpd (pure-ftpd)
named (Bind)
mail (Dovecot)
Exim / Sendmail
PHP 5.2.11

installing these services so I can successfully install ISPConfig?

View Replies! View Related

Auto Time Change Centos On VPS VMWare
I'm using a CentOS 5 VPS server inside a VMWare Infrastructure environment. I don't know if that is relevant, but I have the following:

Every night my server with CentOS 5 changes its time back to +1 UTC. Strangely it happens every 0:00.

View Replies! View Related

How To Enable Mailing List In CentOS Plesk VPS
On one of our VPSes, the Mailing List feature is disabled. The link is showing but is disabled. Upon searching a lot in Google, I found I need to have MailMan installed before I could run Mailing List.

However, we have Mailman already installed on the VPS in question. Any suggestion as to how to get the mailing list link activated?

View Replies! View Related

Installing Yum On CentOS + Plesk (Virtuozzo) VPS
I found this tutorial on how to install yum. The only issue is, we have CentOS 5. Is there a more recent article with the latest files needed to install yum on CentOS5 / Plesk VPS?

[url]

View Replies! View Related

How To Setup Virtual Private Server (VPS) On CentOS?
How can I setup VPS's on my new server?, I want something which is free, can anyone give me some software? for centos

View Replies! View Related

WHM/Centos/VPS Having Brute Force Attacks
I am getting these types of reports in my nightly reports:

=================
sshd:
Authentication Failures:
unknown (bips131.bi.ehu.es): 212 Time(s)
mail (bips131.bi.ehu.es): 4 Time(s)
news (bips131.bi.ehu.es): 4 Time(s)
root (bips131.bi.ehu.es): 4 Time(s)
unknown (swplinux02.swp.ewr.qwest.net): 1 Time(s)
Invalid Users:
Unknown Account: 213 Time(s)

Two nights ago:

--------------------- pam_unix Begin ------------------------

sshd:
Authentication Failures:
unknown (195.251.109.21): 413 Time(s)
root (195.251.109.21): 108 Time(s)
webadmin (195.251.109.21): 18 Time(s)
root (200.55.193.59): 16 Time(s)
daemon (195.251.109.21): 8 Time(s)
ftp (195.251.109.21): 5 Time(s)
root (218.19.69.193): 4 Time(s)
Invalid Users:
Unknown Account: 413 Time(s)
===============

My VPS support said I could try:

-alternate sshd port
-require key access
-selecting client ip access
-rate limit incoming sshd syn packets per src address

However, I need some help understanding the best way to address these so that these brute force attacks aren't successful.

View Replies! View Related

VPS With CentOS, LXAdmin, And FTP Server Root Access
I've just signed up for my first VPS with CMBHosting and the person in charge, Chetan Bakhru, seems like a genuinely nice, friendly and helpful person. In other words this new service look promising at the moment.

However ...

When I signed up I selected his CentOS/LXAdmin plan because I figured that with a pre-installed control panel like LXAdmin I could avoid as much ssh as possible and simply get "up and running" more quickly. Plus I have some experience managing my own CentOS development machine, and I know that a special software package I plan to install runs on CentOS "out of the box" -- so I was expecting good things from this new VPS.

But when my account was created LXAdmin did NOT create an FTP admin account for me with root access to my VPS!

Instead it created an account that drops me into web server's document root folder, and this is far too limiting for me. I really need FTP root server access -- and I'm surprised that LXAdmin did not provide this access by default.

Not only that, but it appears that I cannot create a new FTP account that has any deeper access than the existing admin account!

Does anyone with LXAdmin experience know if this is the way LXAdmin normally works by default? Or is this perhaps a special configuration created by my new VPS host?

View Replies! View Related

Virtuozzo Centos 64-bit Vps Not Using Any Ram For Buffers Or Cache
I have a virtuozzo vps account 64-bit centos running whm/cpanel.

I've been having an issue with high load average at times while very little cpu is being used and there is plenty of ram free, and in looking into this, I've run into another thing that seems very odd to me:

free
total used free shared buffers cached
Mem: 786432 179944 606488 0 0 0
-/+ buffers/cache: 179944 606488

top - 22:29:52 up 15:30, 1 user, load average: 1.23, 1.55, 1.12
Tasks: 74 total, 1 running, 72 sleeping, 0 stopped, 1 zombie
Cpu(s): 0.0%us, 0.1%sy, 0.0%ni, 88.8%id, 11.0%wa, 0.0%hi, 0.0%si, 0.0%st
Mem: 786432k total, 174784k used, 611648k free, 0k buffers
Swap: 0k total, 0k used, 0k free, 0k cached

uname -r
2.6.18-028stab060.8
No memory being used for buffers or cache.

why no ram is being used to buffer/cache slower disk io?

View Replies! View Related

Howto Load Tun/tap On Centos XEN VPS
Anyone have any info on how to do this? It appears my hosts don't know how to do it..

"You have the tun module which can be loaded via a modprobe but the dev entries would appear to be needed to be made. Of course, you could do this if you know how or wait while I research it. We know tun/tap works on openvz but you're the first request we've had on Xen."

View Replies! View Related

Howto Load Tun/tap On Centos XEN VPS
"You have the tun module which can be loaded via a modprobe but the dev entries would appear to be needed to be made. Of course, you could do this if you know how or wait while I research it. We know tun/tap works on openvz but you're the first request we've had on Xen."

View Replies! View Related

Difference Between CentOs 5.0 And Centos 4.5? Both With Plesk
What is the difference between CentOs 5.0 and Centos 4.5? (Both contains Plesk)

Would CentOS 5 contain more updates and fixes? CentOS 4.5 be more stable?

View Replies! View Related

Upgrading From Centos 4.6 To Centos 5.2
Does it worth to upgrade cent os to latest version on server where is installed whm/cpanel?Could i request upgrade from cpanel support ?

View Replies! View Related

Antivirus Like F-secure
I am looking for antivirus under linux like f-secure scanning php shell files scripts but free
i am facing many problems here from these shell files ....

View Replies! View Related

I Cant Secure My /tmp
i want to secure my /tmp and do this:

so i try this link
[url]

so:
cd /dev
dd if=/dev/zero of=tmpMnt bs=1024 count=150000
/sbin/mke2fs /dev/tmpMnt
cd /
cp -R /tmp /tmp_backup
mount -o loop,noexec,nosuid,rw /dev/tmpMnt /tmp

but i have this error:

root@server [/]# mount -o loop,noexec,nosuid,rw /dev/tmpMnt /tmp
mount: no permission to look at /dev/loop#

View Replies! View Related

Secure Sites
In terms of the secure domain, if I had a secure site and wished to access some information on a web page that was from a NON-SECURE domain or at least duplicate the non secure information on to the secure page, does the user need to click acknowledge buttons to go in and out of the secure areas? Can I copy or transfer information [eg goggle search results] onto the secure page without this necessity?

View Replies! View Related

Secure Uploads
My requirements are 500MB, 5GB bandwidth, rails and postgres, $5-6 per month. It looks like there are many providers out there that are offer that.

However the only uploading method shared hosters seem to offer - or at least the only method they advertise - is FTP. Coming from a university and sysadmin background, I thought that anything that sends passwords over the wire unencrypted had died long ago (except HTML forms and legacy systems).

Are there any shared hosting services that allow a more secure upload method (e.g. scp, rsync-over-ssh, even webdav-over-ssl)?

View Replies! View Related

How To Secure Perl
all we know that perl language its using in alot of scripts and alot of system admins stop it why this why u dont try stopp the problems from it and make ur client have perl to used it in scripts lets try this if some one need to see passwd he will do cat /etc/passwd what about make this chmod 700 /bin/cat and he will used wget to get files what about this chmod 700 /usr/bin/wget and lynx what about chmod 700 /usr/bin/lynx in this case we make root only can using this commands any system admin sure know now the idea and he can use it as he want ,, this secured method not only in perl its in another programing language put i give this as a clear exampel.

View Replies! View Related

CentOs VPS System More Secure?

on making my CentOs VPS system more secure?