Hacking measures

[sfindep]

I've just made the jump to a dedicated server. In addition to my newspaper's increasingly complex Web site and some development of software to sell and host for other newspapers, we'll be hosting some small sites for clients and advertisers.

I am just becoming haltingly familiar with Unix, mostly by way of Mac OSX. The terminal doesn't scare me, but I'm more determined than proficient. Realizing I have a lot to learn before this can happen, I nonetheless want to do the best job I can at being a good steward for this server, my own businesses, and my customers.

Now that I'm receiving daily server logs, I'm disturbed at the sheer number of hacking attempts. My log from yesterday was endless; most of the attempts were from the same two IP addresses.

I submitted a ticket last week and got some advice to run this command from the terminal:

route add ((offending IP address)) reject

One of the offending IP addresses from this week returned last night and made hundreds of attempts, which makes me wonder how effective that command is.

Does anyone out there have some practical advice for keeping a dedicated server secure in 2007?

Many thanks in advance.

[gtgeorge]

Quote:

Originally Posted by sfindep

I've just made the jump to a dedicated server.

Now that I'm receiving daily server logs, I'm disturbed at the sheer number of hacking attempts. My log from yesterday was endless; most of the attempts were from the same two IP addresses.

I submitted a ticket last week and got some advice to run this command from the terminal:

route add ((offending IP address)) reject

One of the offending IP addresses from this week returned last night and made hundreds of attempts, which makes me wonder how effective that command is.

Does anyone out there have some practical advice for keeping a dedicated server secure in 2007?

Many thanks in advance.

Welcome to an inside look at the internet I too was disturbed when seeing what actually goes on.
Did you have the config server package installed? If not that is my first recommendation

[Sam]

Install CSF & LFD (www.configserver.com)

[nexia]

hum, actually, did you look at the forum you posted in ?!... this is not an announcement but a support request... you may not receive good support here...

[ghpk]

Quote:

Originally Posted by nexia

hum, actually, did you look at the forum you posted in ?!... this is not an announcement but a support request... you may not receive good support here...

may be he's still in awaiting activation status so he could not post in dedicated support forum yet

[sfindep]

Ah, that's exactly what happened. I chose the least inappropriate topic, but still raised an eyebrow. Will I get yelled at for cross-posting once my account is active?

[sfindep]

Thanks, George; I'll check out config server.

[chaloupe]

I've used ConfigServer on every server and VPS we have and it did change those box from being unstable to extremely available systems uptime.

There's a lot down with their configuration but it's the one of the best thing to do.

I would suggest the cPanel Service Package+ MailScanner at $125. If you are not able to have it right away since of the prices for the dedicated server and ConfigServer service right away, I would suggest to at least put the firewall ( http://configserver.com/cp/csf.html ). It's free and easy to install.

Best Regards,

[slapshotw]

Definitely spend the money on the configserver package. It's the best $125 you'll ever spend and will shut down those hack attempts quickly!