Author Topic: Dedicated server security  (Read 635 times)

shajahan

  • Green Belt
  • *****
  • Posts: 341
  • Karma: +0/-0
Dedicated server security
« on: January 20, 2015, 10:58:28 AM »
Dedicated servers provide numerous benefits for many kinds web hosting. Online businesses and companies of all types consider that the dedicated server solution is imperative to the success of their web based business. It would make sense, then, to adequately address the security for the dedicated server, as it is a critical part of the web presence and generally has quite a bit of time and money invested in obtaining and keeping it operable.

Potential security risks for dedicated servers can range from malicious attacks by hackers and viruses to more basic situations such as hard disk crashes and data corruption. The following information will detail some of the key areas that should be addressed in order to avoid problems.

Passwords

The password is a key component in security for any dedicated server.
The first thing to ensure after acquiring a new dedicated server is that the password has been changed. The web hosting company may have set a default password or emailed the password in plain text. Because there is a risk that someone else knows the password, it is essential that it is changed immediately. Here are some guidelines for passwords:

Use different passwords for personal and administrative accounts. For Linux systems, ensure that the root password is different from the regular account.
It is best to choose long, complex passwords because they will be harder to guess. By combining letters, numbers and punctuation, avoid using any words that are contained in the dictionary.
Put dates on your calendar to remind you to change all of your passwords on a regular basis.
Unnecessary Services

Be sure to identify unnecessary services and have them disabled, because the more ports that the server has open to the Internet, the greater the security risk factor will be. Certain services, such as HTTP and email are required, however, there are probably some others that can be easily eliminated, such as:

Any service that is not being used should be disabled. Having services that are not regularly used and monitored can open your website to more vulnerability than is necessary.
If FTP is not being used, have it disabled. If it being used, ensure that it is not ever using the root or administrator password. Since FTP sends passwords across the network in plain text, it can create an insecure vulnerability to access by unauthorized individuals.
Telnet has been known to be a high security risks, since it can be very easy for the password to be stolen. Instead, use SSH (secure shell).
Firewall

The firewall software (or hardware) package can control which of the server ports are open on the Internet. Sometimes, they can detect intrusion attempts. Therefore, the firewall is an essential part of any security program for the web server.

Anti-Virus Protection

It is a well known fact that viruses can potentially cause devastating and serious damage to the server. Since most viruses are written for the Windows platform, most Windows servers are particularly vulnerable. Therefore, Windows servers should have a virus scan on a regular basis and the virus software should be updated as frequently as necessary to stop new viruses from infiltrating the system.

Linux servers should also be scanned regularly, as they aren’t completely safe from viruses in any case. There have been a number of worms that have exploited security holes in some of the more common Linux services. The best way to avoid disruptions in service is to run updated and run firewall protections regularly, while also disabling any unnecessary services.

Windows viruses have also been known to threaten Linux systems, as they are usually emailed to thousands of addresses. An email virus scanner can be very crucial, for that reason

Software Updates

Software updates are extremely necessary, as manufacturers are continually issuing new releases to handle security breaches when they have been discovered. It is necessary to update key software components such as the web server, email server, firewall, and SSH server, such as languages like PHP and Perl – as they occur on each new server. It is never a good idea to assume that a web host has provided the latest issues of software with its packages. In addition, calendar regular checks for updates and set up an automatic notification if at all possible.

jaswin.datasoft

  • Green Belt
  • *****
  • Posts: 418
  • Karma: +1/-0
Re: Dedicated server security
« Reply #1 on: February 23, 2015, 07:54:55 PM »
T security can mean a lot of different things, depending on who's hosting your servers. Security could mean that your server is just sitting in a concrete building with limited access. Or, it may mean that your servers are sitting behind a firewall that's not even configured right. You get the idea—you might not be as secure as you think you are and need to be. And the risks are huge.

For Rackspace, security starts with protecting the integrity of your data and guarding against service interruptions. But being truly secure means far more than safeguarding data and preventing interruptions. There are the resulting financial losses, your brand's equity and reputation, business continuity and potential litigation or fines to consider. And, when it's all said and done, paying a little more for expert security means customers will continue to have confidence in your business. That, in itself, is worth investing in Rackspace managed security solutions.

santhoshidatasoft

  • Brown belt
  • ******
  • Posts: 668
  • Karma: +0/-0
Re: Dedicated server security
« Reply #2 on: March 28, 2015, 07:58:02 PM »
Secure Your Server:
Keeping your dedicated servers or managed hosting secure is critical to a healthy, thriving web presence. Bugs, hackers, identity theft—every day, every second—a new threat appears somewhere on the Internet. Arming you with the tools and expertise you need to address unwanted traffic and deliver a seamless online experience for customers. Security and redundancy are two of the most important parts of your server solution.

For secure connections and data integrity, Utilize server security services protecting your online business today and far into the future. Learn more about customized firewall management and advice on selecting the right SSL certificate to meet your needs.