siterollout.com can provide the following services to ensure that your server is setup correctly, secured against threats, hardened, updated with the latest software updates and optimised to maximise your server's security and reliability.
Supported Operating Systems:
RedHat, CentOS, Fedora, FreeBSD
Supported Control Panels:
CPanel, DirectAdmin
Linux Server Security Bundle - 100GBP One Off Server Setup*
- Update kernel and OS with all latest packages.
- Install and configure APF Firewall to only allow traffic on the ports that are used. In addition, we'll configure the Anti-DOS function in APF. This additional module helps mitigate and prevent certain types of DOS (denial of service) attacks to your server.
- Install and configure BFD (Brute Force Detection). This program works real time in conjunction with APF firewall to block any IP Addresses of users that fail authentication more than 3 times in 10 minutes.
- If using Cpanel - tighten up Cpanel settings/security. Change Update Config to use Cpanel Release builds.
- Install and configure Logwatch. This program parses through your server's logs and reports to you via e-mail on a daily basis with tabulated information. We will add a daily cronjob to email test results daily.
- Install SIM (System Integrity Monitor) which is a software that checks all services 24x7 and restarts them if they are down. An e-mail is dispatched if a downed service is detected and restarted.
- Optimise and secure Apache (HTTPD) web server.
- Secure & harden sysctl.conf system configuration file to help prevent the TCP/IP stack from syn-flood attacks. It is also configured to prevent other various and similar network abuse.
- Secure and harden /tmp and /var/tmp to prevent the execution of malicious scripts.
- Install Rkhunter which is a very useful tool that is used to check for trojans, rootkits, and other security problems. We will add a daily cronjob to email test results daily.
- Install ChkRootkit which is a tool to locally check for signs of a rootkit. We will add a daily cronjob to email test results daily. We will add a daily cronjob to email test results daily.
- Tighten up SSHD settings/security.
- Disable direct root login.
- Install mod_security which adds another layer of security for your web applications.
- Harden the php.ini file by restricting certain functions to the root user.
- Enable SPAM protection by enabling the mail server to use spam blacklists, hence filtering out 99% of internet spam.
FreeBSD Server Security Bundle - 100GBP One Off Server Setup*
- Upgrade OS to latest version
- Compile custom kernel for faster boot time, smaller memory print etc
- Update ports collection.
- Install Rkhunter which is a very useful tool that is used to check for trojans, rootkits, and other security problems. We will add a daily cronjob to email test results daily.
- Install ChkRootkit which is a tool to locally check for signs of a rootkit. We will add a daily cronjob to email test results daily. We will add a daily cronjob to email test results daily.
- Remove unnecessary users & groups.
- Blackhole any tcp/udp traffic that is bound for ports without daemons/listeners hence mitigating DOS attacks
- Enable process accounting
- Configure firewall
- Tighten up SSHD settings/security.
- Disable direct root login.
- Install mod_security which adds another layer of security for your web applications.
- Harden the php.ini file by restricting certain functions to the root user.
Full Server Management - 30GBP/Month
- Available for servers running Cpanel/DirectAdmin only.
- Ongoing support for the above security bundle scripts/software.
- 24/7 server monitoring with rapid response to any server downtime or network outages.
- Regularly update kernel and OS with all latest packages as soon as they are released.
- Regularly upgrade PHP and Apache with as soon as new stable versions are released.
- Ongoing support for any other 3rd party software which we agree to install.
- Ongoing server load monitoring, tweaking and optimisation of Apache/PHP/MySQL and other services.
- Ongoing SPAM prevention and hacking prevention
- And much more!
To place an order, or if you have any questions, please CONTACT SALES.
*For the one off server security setup all scripts/software installed will have references to their
manuals/help files, and all changes will be documented. Support for scripts/software/changes will be provided for 7 days
only after the final work summary has been provided. After the 7 day period it is the client's responsibility to
investigate any issues that arise, or hire us for additional fees to resolve any such issues.