Your Favorite Security Tools For Your Linux Web Servers
Nov 18, 2008Your Favorite Security Tools For Your Linux Web Servers
Just wanted to know what all you guys favorite tools are for your Linux Web Server Setups
ADVERTISEMENT
Development Tools On Dedicated Servers
Jul 21, 2008I have a CentOS dedicated server that does not have gcc,make,other standard develomplent tools installed. The provider adamantly refuses to offer any assistance citing terms of the contract.
Being a newbie in running servers I have trouble finding binary form of packages matching the version of my OS and pre-installed libraries.
Obviously I cannot compile anything without a compiler (including the compiler itself!).
I have downloaded the centos distro, and mounted iso on my server, but that was wrong version. Turns out the right release is only available via bittorrent - which I again cannot install without gcc.
What is "industry standard" for dedicated Linux servers in this respect: do providers typically pre-install tools like gcc? or they leave users figure that out on their own?
Checking What Packages/software/tools Are On A Linux Server
Dec 8, 2008I've paid for a site to do some harding of my new server and I'm not up to speed with it all yet.[url]
They say they've completed it but I can not find any config files for mod_dosevasive in my httpd.conf file. Is there a way I can check to see what packages or software or tools are installed on the server?
CentOS 5 with WHM/cPanel.
Plesk 12.x / Linux :: Tools And Settings Page Loading Icon
Aug 25, 2014Is there any way to get rid of this loading icon every time you visit the tools and settings page (top right during page loading)? It only happens on our Plesk 12 servers that were not upgraded from Plesk 11.5.
Its irritating because the page layout jumps around after the loading is complete. It is the only page to do it and it happens regardless of the internet speed.
Disabling "Enable access to premium commercial apps on the Interface Management page fixed the issue in Plesk 11.5 but this does nothing in Plesk 12.
Plesk 12.x / Linux :: Cannot Access Backup Manager (Tools And Settings Or Any Subscription)
Jul 11, 2014After a successful upgrade from 11.5.30 to 12.0.8 the Backup Manager cannot be accessed anymore. The system replies with:
Internal error: Failed to parse response. Reason: Failed to read data from stream Process output:
MessageFailed to parse response. Reason: Failed to read data from stream Process output:
File PMMConnector.php
Line708
TypePleskPMMResponseException
Apparently the backups are not saved anymore either.
Joomla Security / Linux Security
Apr 4, 2008I run a web hosting company and one of my servers is a LAMP server running CentOs 5. A user of mine has a Joomla installation running to manage his website and he has run into the following problem that I am puzzled by.
When Joomla adds a component or module to itself, or when a user uses the Joomla upload functionality, Joomla will add the new files under the user name "apache". This makes sense as it is the apache service running PHP that is actually creating the files.
However, when he FTP's into the account to modify these files, he doesn't have the appropriate permissions to do so as he doesn't have a root level login, just permissions on his home directory which is the site. Any help would be much appreciated.
Also, does anyone know how to change the owner/group of a directory and all of its sub directories in Linux without changing the actual permissions? I.e. some of the files in the folder have different permissions (0644 as apposed to 0755) than its parent but if I do a top down user/group change on the folder it will change everything in that folder to 0755.
Customer's Favorite VPS
Jul 10, 2008Suppliers offer anything from Xen to Virtuozzo, OpenVZ, VMWare ESX. As a customer does it make any difference to you? Which do you prefer, or don't you care? Do you search out a VPS provider taking into account the virtualization technology that they offer?
View 3 Replies View RelatedFavorite VPS Host
Dec 23, 2008what is your favorite VPS host? I've picked some of the big names in the industry for the poll; if you choose "Other",
Specifically consider who has the best reliability and customer service.
Favorite SSH Client
Jul 4, 2007I just want to know what are you guys favorite SSH clients out there.
View 14 Replies View RelatedFavorite Server Racks
Jul 14, 2008Just wondering - what 19' racks/cabinets are your preferred make and model ID, and why?
View 8 Replies View RelatedYour Favorite Virtual Software? Vmware, Xen Ect
Sep 19, 2008Looking to see what HOST OS you prefer to have manage your VPS.
Virtuozzo
XEN
Virtual Iron
Vmware ESX
Microsoft
Lets take in the account that your just ordering a VPS from a company and money is not an issue since you will not have to make the investment.
Favorite Control Panel For Installing In A VPS/cloud Server?
Oct 9, 2009What's your favorite control panel for installing in a VPS/cloud server?
View 14 Replies View RelatedLinux Hosting And Security
Jan 20, 2008About next week, I'll put a Linux box on the web.
Could anyone suggest what kind of security measures I could implement?
Iptables:
- Protect against DDos?
- Protect against certain worms?
- Protect against flooding?
Services:
- Protect against constant dictionary attacks based on ports?
Pretty much any experience you could put down in this thread would be invaluable.
Also mod, if this shouldnt be here. Feel free to move, Im not sure where it should go!
What Is The Best Security Software For Linux
Feb 29, 2008What is the best security (antivirus/firewall) for a linux web server?
View 4 Replies View RelatedLinux Server Security Scanner
Apr 28, 2008i have managed server. just i want sure if it is secured.
i want company to test my server, Security Scanner.
and give me report about my bugs.
Plesk 12.x / Linux :: How To Test WAF (mod Security)
Oct 8, 2014I have Parallels Plesk 12.0.18 with CentOS 6.5 (Final)
WAF is On, with Atomic Basic ModSecurity rule set.
I was wondering if my sites were protected and I went to the Atomic wiki.
When I run a test from a non-whitelisted system following these instructions (STEP 10) [URL].... I always receive 404 error with all of my sites.
I also tested with:
[URL]...
Results: The sites load normally. (the call not even appears in the logs)
I've unistalled and reinstalled mod_security several times with the same results.
Is there any "official" way to check if WAF is protecting Plesk 12?
I asked same question in Atomic forum and they said:
you'd need to ask parallels about this, we made the ruleset available to them, but they implemented it using their own design. They might not be using 403 error codes like we do.
Linux Security Threat - More Sloppy Coding
Jul 19, 2009[url]
Now, before you say it, the real flaw is the compiler. But, that too comes from the usual holier-than-thou culprits. They can't fix it unless they fix the compiler.
And of course, there is the usual see no evil-hear no evil head in the sand approach to defending the honour of their little pet.
Plesk 12.x / Linux :: After Mod Security Logrotate New Log Is Empty
Jul 6, 2014Plesk 12 on Centos 6.5
I added the following to my /etc/logrotate.conf
/var/log/modsec_audit.log {
missingok
daily
rotate 4
compress
}
I'm not exactly sure if the above is the correct syntax, but the result was that two days later my current modsec_audit.log was Gzipped and a new modsec_audit.log was created.
The problem is that nothing was logged to this new file.
From the Plesk 12 control panel I turned off mod security and then turned it back on again and hey presto, the new logfile started to log events.
This leaves the problem of why nothing was recorded when the file was created.
High Security Issue For Linux Server (New Methods)
Aug 22, 2007What are new methods to High secure a linux server ? (For webhosting company)
Please write something you know for Linux Security Methods (New version of OS).
Plesk 12.x / Linux :: FTP Very Slow (with Firewall / Mod Security Enabled)
Jun 26, 2014After upgrading to Plesk 12 the FTP connection has become very slow. Mode Security, Fail2Ban and Plesk Firewall have been enabled, the security is set to force sFTP and maximum security and in /etc/proftpd.d/ a conf file has been added to set the passive ports that have been opened in the Plesk Firewall (60000 to 62000)
Turning off the Mod Security does not solve the slow connection.
What can we do to detect the cause of the problem?
Plesk 11.x / Linux :: Add Strict Transport Security (HSTS) To Panel
Mar 4, 2014I have tried this on Plesk 11.5 and Plesk 12.0.10 Preview running on Ubuntu 12.04.4 LTS...
Locate the file
/etc/sw-cp-server/conf.d/plesk.confClick to expand...
Plesk 12.x / Linux :: Disable Outlook Or Thunderbird Security Warning
Jul 12, 2014How can I do to send email without the security warning?
I want the clients sending mails no longer have a security warning.
I tried with SSL port 465
I tried with port 587 TLS> Mail settings for the entire server> Enable Send Message
Using WHM Tools To Set Up A SubDomain
Aug 15, 2005I am using PayPal's IPN to set up hosting accounts. It works fine if the user is setting up a domain such as name.com, but if they are using a subdomain from the hosting, such as subdomain.hosting.com, it fails to work. Here is the code I am using ...
View 0 Replies View RelatedMonitoring Tools?
Jul 9, 2008Any website monitoring tools available that can tell you when a site is unavailable and/ or other tests/checks?
View 10 Replies View RelatedMonitoring Tools
Jan 6, 2007if there wre tools which can monitor the server load/apache/mysql and suggest settings to optimize apache/mysql/php?
View 3 Replies View RelatedPlesk 12.x / Linux :: For Security Reason Backup Is Performed On Behalf Of Subscription System User
Aug 24, 2014I thought this problem was fixed in Plesk 11.5 but I'm still getting the following backup warnings in Plesk 12..."For security reason backup is performed on behalf of subscription system user...."
My phpbb forum creates cache files which have apache ownership and Plesk backup manager gives warnings that it cannot backup the files due to ownership errors.
I have searched for days for a solution without success. If I change the permissions to owner instead of apache the forums don't function correctly.
Is this a Plesk bug that is still evident in Plesk 12?
Tools To Optimize Apache & PHP
Apr 8, 2009There are some great tools to optimize MySQL, however I have not been able to find the equivalent for Apache + PHP. I have a lot of experience tweaking these two in extreme traffic environments, but there is no beating a program that can simultaneously evaluate several inputs over time to calculate optimal settings.
View 11 Replies View RelatedWeb Construction Tools/Utilities
Oct 20, 2009creation of my first web site.
I wanted to know what tools or utilities I should look for from the hosting service?
I'll be running my blog, selling software and technical notes,
allowing the download of software and technical notes, registering visitors, allowing some 3rd party advertising.
High Bandwidth Log And Tools
Oct 25, 2008Just an hour ago, my datacenter told me my server (cpanel + with CSF) is using up to 240mbps of inbound
View 3 Replies View RelatedServer Harden Tools
Sep 30, 2007Are there any good tutorials or tools for Serer Hardening on CentOS?
Additionally, any good Host based IDS units along those lines?
Pingdom Vs Others - Monitoring Uptime Tools
Dec 4, 2008Pingdom vs Others - Monitoring Uptime Tools
So i looking to buy a quality and reliable uptime monitoring service. I have been testing PingDom free trial, and all the reports went fine. Also the interface is good looking and as public reports to show to clients.
So in terms of use and fuctions, Pingdom is perfect for me, but i wanted to know if Pingdom is a quality / rock-solid / reliable service? Or its just has a beutiful interface?
Any bad or good experiences with Pingdom?
Note: From many other posts i see that Alertra is a quality and reliable service.
So when comparing to PingDom will Alertra be much more reliable?