If I understand correctly, on the main physical server, we cannot install any firewall, so customers in VPS can open any port on their VPS. So, I am wondering about the security of the main server? What if someone can *hack* into the main server, and delete all VPS there? Is there any case like that before?
View 6 Replies
on HyperVM website, they suggest 64bit OS for the main server, and 32 bit OS for the guest OS. Do I understand correctly? Is it faster than 32bit OS on the main server?
View 10 Replies View Relatedis there any simple write up or method to change the main server IP in WHM/Cpanel without screwing anything up? I have some new better IPs I wish to use for the servers base IP and accounts but I'm not sure what exactly needs to be changed to make the transfer without breaking anything.
View 5 Replies View RelatedI have my main domain (domain.com) and it is where all my sites and customer sites are pointed to (ns1.domain.com and ns2.domain.com).
I just purchased a VPS and have made (domain.com) my main domain as I want it to be because of keeping the nameservers the same for my clients.
My vision is this, I will transfer all the sites from my old cPanel account to my new DirectAdmin account. I have setup a time to let my clients know not to update any content on their sites. At that time I will then download the sites from the cPanel account to the DA account. I will then move my main domain (domain.com) over as well and then change the name server registries at namecheap.
I understand some things can get lost in this switch, but ALL clients are aware of this and understand. They will still have access to the old server via the IP address to check for misdirected mail.
Is this the simplest way to get this done?
Is there a better way, with using the main domain?
I currently have a problem here. I want to change my server IP from xxx.xxx.xxx.123 to xxx.xxx.xxx.321
1. I have requested cPanel IP changes to xxx.xxx.xxx.321
2. I am about to make changes for my eth0 to to xxx.xxx.xxx.321
3. How do I manually change cPanel setting (inside WHM) main server IP to xxx.xxx.xxx.321 using SSH command? Which files to edit?
When I change my eth0 to new IP, it won't detect the license anymore telling me "Invalid License"
Just moved to a lxadmin based system from my current plesk system and I have a dilema
Configuration
Server 1: Main Web/CP/Primary DNS/Mail/etc
Server 2: Secondary DNS/Backup Mail forwarding
With Plesk I generated a transfer file from named.conf (plesk runs bind/named for dns) sent that over to server 2 a couple of times a day.
Problem is I've converted lxadmin to run with bind instead and named.conf only contains an include to lxadmin.named.conf and this is empty. So where does lxadmin put its conf files for named?
I'm not restricted to using named, I'd use djbdns if there was an equally simple way of transferring the zones across to server 2
How do I add aliases to the Full hostname of the plesk server itself? I want the server to listen to 2 more names. Especially for mail, and for migratory purposes (plesk server x is a new one, the name of the old one y needs to become an alias of x later on, etc.). I'm amazed by how hard to find this is, and there is literally nothing on it that I can find!
Of course, I can add aliases via command line, but I have no intentions of having postfix and webserver config be overwritten every time the control panel is used..
I currently have a web VPS hosted with FDCServers.net and after 5 days of switching to it i am getting massive HTTP requests. When i login to WHM and hit apache status i have many requests per second by multiple IP's that are going to pages that simple don't exist. Currently my hostname for the server is set at web-01.optical-hosting.com which is what the requests are being sent to. I am also having a DNS issue because when i put http://web-01.optical-hosting.com in the web browser it displays the first account's site under "list accounts" in cpanel. Can someone please help me fix both of these issue's? i will post an apache log in a second post as it is long. Also, these are from overseas. please someone help me with this i have Aim and Msn.
View 4 Replies View RelatedWhenever I try to create a user account I get the following error
Sorry, resellers are not permitted to create subdomains of the server's main domain
My server domain is www.domain.com and reseller is trying to create a user account like new.domain.com . It was working fine a few weeks back but I think since I upgraded the cpanel and whm, it doesnt allow creation of accounts anymore.
Could someone help me to fix this error please?
I own the VPS and the reseller and all other accounts.
I have just moved away from Kloxo Hosting, and I am a bit confused as to how I go about setting Client domains to use the (Already Registered) Nameserver Records I have created on the server.
You see, when I create a customer, the template adds the domain with it's own nameservers, ex: (ns.customerdomain.com -> 0.0.0.0) I don't want this to be the case.
What I would like to achieve, is for all my client's to have their NS records pointing at the NS records I already have registered on the server.
The reason for this is, when I submit the registration document to my local registrar, I have to specify the nameserver address for the domain, however, I only have 2 IP's on the server. I cannot glue every customer's domain FQDN to an IP.
I'm running CentOS 5.x and DirectAdmin and wondering how to do the following:
- Disable compilers and other known binaries. Should I chown WGET 550?
- Prevent Shell Fork Bombs
- Best way to create partitions for tmpfs, tmp since my host forgot them?
- Any other tips on securing a DA based server? (I already have taken care of the whole SSH side of things)
One one of our (linux) servers spammers are king. they apparently can control anything and place spam links throughout the files.
For example spammer inserts Iframes either above or below HTML tags. (some step57 related type of virus/trojan as it seems)
Our programmer did not find where the problem is in our applications, yet he is not a security expert.
Our server admin company made us install phpuexec, we apparently have been checked on the server end and have mod_security, but we still don't know what's going on...spam continues.
Trying to determine what I want to put on my server for security. I have secured my /tmp, /var/tmp, and /dev/shm. I am now contemplating mod_evasive, mod_security, and/or APF Firewall.
1.) Should I install all three, or will APF Firewall, provide the same or similar security as mod_security, or vice versa?
2.) Will they all work together without conflicts?
3.) Does installing these services have any affect on overall server performance?
4.) Any other services you might recommend installing and why?
I have recently installed and configured my webserver. Since I think security is very important I am curious for recommendations, tips, etc.
My server:
-CentOS 4.4 (installed by provider)
-Apache 2.0.52
-Php 4.3.9
-MySql 4.1.20
-No FTP
-Mod_security is running
The firewall that comes with CentOS is switched on and allows the following ports: http, ssh, smtp.
I have installed sendmail, but it is turned off by default. I need it approx. 3 times a week for 15 minutes or so and will turn it on then.
I have barely any budget so hardware firewalls etc. aren't an option.
Furthermore it's a basic server, just like my knowledge, so advanced things like IDS aren't an option.
i want to know how can they make the directory ( u--------- )
take a look on this php shell
[url]
what i mean is they make the directory secure against any phpshell with that trick and they hide the hard disk space
how can i make this
my apache is 1.3.37 and i using fc5 and i have mod_security and cfs
I just bought a new ip address and want to setup this new ip as my server's main ip, making the 'existing main ip' as the secondary ip.
Which means, this new ip will be the server's default ip address for all services, including when connecting to other server.
I'm using CentOs 4.5 and swsoft's panels: HSPcomplete & Virtuozzo Power Panel, and Webmin.
I am considering renting a server, but got one question first.
If I sign up for one unmanaged root server with a control panel, from a provider. And just put my website on the server, and let it run there.
Is that a security risk? Is it easy for people to hack into my server, or anything like that?
My server has been hacked, I need you please to help learn about Unix server security to protect my server.
View 6 Replies View RelatedI have a dedicated server which I access via remote desktop.
The firewall is not enabled. What kind of security should I have on my server?
Ive read that if I enable Windows Firewall my remote desktop connection will be blocked & this will mean me having to contact the server company via phone etc.
Does any body recommend we3cares server management services?
I need a very simple server management and hardening job and dont want to pay much. (not for a hosting company)
Currently working on securing my server and i think I'm doing quite well until I asked myself the question, have I done it right? Is there anyway to actually test how secure my server actually is? I'd rather not just wait and see if someone can hack me to bring to light what I did wrong...I was also thinking of hiring someone to secure my server but then how do I know that they've done anything different to me?
Are there any scripts or programs I can run to test server security?
Is there any script or method where I can test my server security?
View 2 Replies View Relatedafter following the perfect server setup - centos5.2 guide I have setup a home server on my dsl connection and installed openfire with relative ease. I have a paid hosting server which runs my website but I want to have it access the userservice plugin of openfire to add/remove users (which is installed on my new home webserver).
After trying fopen and CURL to post GET data to my home server without any luck I did some reading and came accross the snoopy php class. The snoopy class now allows me to get the default apache test page on my home server but when i try to point snoopy to my openfire admin on port 9090 it throws up a timeout error (but i think this may be an error in the snoopy class?).
CURL and fopen allowed me to get data from google and some other sites but not from my home server.
