Maintaining the highest level of security should be a major concern for all dedicated and co-location customers. Atjeu provides hardware and routing protection against basic hacking and attacks, but dedicated and co-location customers need to be pro-active in their system administration to maintain the best level of security possible. This includes keeping up with all the latest operating system security updates, turning off all services that are not needed on the server, and keeping a close watch on all the log files on their server.
Do these on a regular basis
- Change all passwords
- Use long passwords with letters, numbers and symbols
- Run the FBI DDOS tools
- Check Redhat.com (or cobalt.com for cobalt customers) for security updates and install them when they come out
- Check your logs (/var/log directory usually), especially messages, xferlog, and secure for unauthorized accesses, users or transfer.
|
Additional things you can do
- Turn off all unnecessary services
- Use SSH instead of telnet
- Install a software firewall
- Do not allow your users to install port scanners or anything suspicious.
- Investigate all suspicious activity
- If you are going to leave your server unattended for a long period of time, consider turning all services except http and mail off until you are back.
|
Visit our Security Bulletin Board where you can post your questions or information on the latest exploits etc...
Security BBS
Downloads for dedicated and co-location customers:
FBI DDOS Tools
Instructions:
- Upload file to your server
- Login and su to root
- Gunzip "filename"
- tar -xf "filename"
- cd find_ddos
- At the command prompt type ./find_ddos
Note - Cobalt Raq2's do not need to use the FBI tools
Links:
Cobalt Unsupported Updates
Infosyssec.net
Packetstorm
