Looking into tweaking my own server.
Logwatch configuration
Host.conf & sysctl hardening
Noexec, Nosuid temporary directories
Logwatch configuration
Host.conf & sysctl hardening
Noexec, Nosuid temporary directories
TCP/IP Hardening
Update all server/control panel software
Disabling Unused Services
RPM Package Audit
Check/secure configuration defaults on common services
Password Scanner - scans for easy to guess and common passwords
Filemanager - allows you to edit system files through WHM in case SSH is inaccessible
Firewall Admin - allows you to edit firewall allow & deny list and config through WHM
Host.conf & sysctl hardening
Noexec, Nosuid temporary directories
Logwatch configuration
Host.conf & sysctl hardening
Noexec, Nosuid temporary directories
TCP/IP Hardening
Update all server/control panel software
Disabling Unused Services
RPM Package Audit
Check/secure configuration defaults on common services
Password Scanner - scans for easy to guess and common passwords
Filemanager - allows you to edit system files through WHM in case SSH is inaccessible
Firewall Admin - allows you to edit firewall allow & deny list and config through WHM
These are the things I am clueless what they are and put my guesses in partenthesis.
Noexec, Nosuid temporary directories ( done by default when installing cpanel in the newest version )
Update all server/control panel software (cpanel and yum did)
Disabling Unused Services ( what is this really? disabling telnet and cpanel's chat server that's it? )
RPM Package Audit ( WHAT IS THIS? NO IDEA, what is this using GPG keys to verfy the rpm's ur installing are legit ? )
Check/secure configuration defaults on common services ( blah blah blah ? )
SO.... in the end what I see I have left to do is this....
TCP/IP Hardening
Password Scanner - scans for easy to guess and common passwords
Filemanager - allows you to edit system files through WHM in case SSH is inaccessible
Firewall Admin - allows you to edit firewall allow & deny list and config through WHM
and the editing tweaking of:
httpd.conf ( I've messed around but dont know what best settings are for my heavy spider trafficing and low real visitor count )
my.cnf
host.conf
nsswitch.conf
sysctl.conf
anyone know where i can get a guide on good settings for the above i have left to do? I appreciate all help immensely as I don't want to waste more money on a company to do not too much for me....
~Mouse
