p.janusz
By:
p.janusz

Is there a checklist for setting up a secure, optimised server?

March 5, 2014 2.5k views
Looking for a guide that will give the bare minimum of what I would need to install to have a server up and running, secure and optimised for hosting my sites Also the best order in which to install. such as lamp, firewall etc.
3 Answers
Iptables is a must.
https://www.digitalocean.com/community/articles/how-to-setup-a-basic-ip-tables-configuration-on-centos-6
(This tut will also work on debian and ubuntu)
No passwords for the ssh login, use private RSA keys!
There is no specific thing as it is all option steps you take yourself:

for me I would go for this list:
1- securing ssh and hardening and use only SSH key to access WS
2- disabling root login
3- using iptables
4- port knocking
5- Fail2ban "you need to be very careful with that, otherwise, you will find yourself locked out"
6- using Intrusion Detection System

and possibly the most important thing to protect the server itself is using mod_security for either Apache or Nginx

and many others.....

you can find the list here:

https://www.digitalocean.com/community/articles/an-introduction-to-securing-your-linux-vps
by Justin Ellingwood
Linux security is a complex task with many different variables to consider. In this guide, we will attempt to give you a good introduction to how to secure your Linux server. We will discuss high-level concepts and areas to keep an eye on, with links to more specific advice.
Thanks guys. You given me something to work with.

Pretty new to this always had managed vps's before, so just want to make sure I can at least do the minimum to get up and running and secure.

Any further suggestions always welcome.
Have another answer? Share your knowledge.