Securing your Linux VPS server

**arsalahmed786** · 09-04-2017, 02:03 PM

Hi guys, since this forum created nobody posting any protection tutorial.

today i was search something to share.

Follow These Steps to Secure Your Linux VPS server

Step 1: Keep Your System up to Date
Step 2: Use Secure Shell (SSH)
Step 3: Ignore ICMP or Broadcast Request
Step 4: Enable Iptables (Firewall)
Step 5: Do Not Use FTP
Step 6: Defend from brute force attacks
Step 7: Search for Backdoors and Exploits
Step 8: Set Permissions

Note: i don't have any credit all credit goes too www.host1plus.com.

Official Article: https://www.host1plus.com/tutorials/oper...vps-server

Share your opinion about this protection tutorial if it really protect or not. i didn't tried it yet.

Vuluts · 09-04-2017, 04:40 PM

Initial protection that you may be done is changing your password into a complex password with a combination of number symbol and upper lower case letters and disabled the root login and make a user account with sudo commands.

**arsalahmed786** · 09-04-2017, 05:03 PM

@Vuluts hmm nice suggestion but mostly DDoS attack because game server maybe i've seen or maybe i'm wrong.

you can also protect from internal.

Vuluts · 09-05-2017, 01:19 PM

(09-04-2017, 05:03 PM)arsalahmed786 Wrote: @Vuluts hmm nice suggestion but mostly DDoS attack because game server maybe i've seen or maybe i'm wrong.

you can also protect from internal.

AFAIK you can only protect your VPS from DDoS is getting a DDoS protection from 3rd parties or if your host offer for your vps.

**arsalahmed786** · 09-05-2017, 03:45 PM

(09-05-2017, 01:19 PM)Vuluts Wrote: AFAIK you can only protect your VPS from DDoS is getting a DDoS protection from 3rd parties or if your host offer for your vps.

yep you're right first Provider must allow it. but can get make more secured security then default and everyone have to do it first.

Vuluts · 09-05-2017, 03:54 PM

(09-05-2017, 03:45 PM)arsalahmed786 Wrote: yep you're right first Provider must allow it. but can get make more secured security then default and everyone have to do it first.

Ofcourse providers will allow that for sure and one thing game server wont get attacked by DDoS if it's still new.

humanpuff69 · 09-17-2017, 07:08 AM

and also you can use public key authentication instead of the password . it will get less bruteforce because public key is much harder to bruteforce than password here is the link

https://www.digitalocean.com/community/t...nux-server
not owned by me

Login

Options

Sponsors: VirMach - Host4Fun - CubeData - Evolution-Host - HostDare - Hyper Expert - Shadow Hosting - Bladenode - Hostlease - RackNerd - ReadyDedis - Limitless Hosting