• Initial Setup - Hostname, Control Panel configuration, Setup DNS, etc.
• SIM - (System Integrity Monitor) - 24x7 Internal Monitoring of services.
• SPRI - (System Priority) - Sets priority to current processes being run on your server,
decreasing load 10-25%.
• PRM - (Process Resource Monitor) - Monitors all resources used by all processes and if a
process is being flooded or causing high load on the server, it is killed.
• BFD - (Brute Force Detection) - Detects brute force connections and automatically enters
the offending IPs into the firewall to be blocked.
• LES - (Linux Environment Security) - Enforces root-only permissions on system binaries as
well as other restrictions on system programs.
• /tmp & /var/tmp hardening – We harden /tmp and /var/tmp so no malicious bash scripts
can be executed from this commonly used directory.
• /dev/shm & /proc hardening - Another place hackers tend to upload files to is /dev/shm.
This directory is hardened as well.
• Optimize FTP Server for faster connections.
• Optimize PHP, MySQL, Apache to reduce load and speed up connections.
• Secure Apache to reduce the amount of information visible about a server's software
making it less vulnerable.
• Host.conf Hardening - Prevents IP spoofing and prevents DNS poisoning.
• CHKRootKIt – Simple script that detects software used by hackers. It scans once a day
and emails the client if any rootkits are found.
• Firewall Installation - APF (Advanced Policy Firewall) iptables based firewall and anti-dos
rulesets.
• TCP/IP Stack Hardening – Prevents DDOS and SYN-Flood attacks.
• Logwatch – Sends a daily report to the client with all activity that has taken place on the
server for that day.
• Operating System Optimization – Optimize the OS for faster operation and load reduction.
• Disable Open DNS Recursion - Prevent foreign queries that strain your dns servers and
prevent it from being utilized in DNS DDoS attacks.
• Remove unused software – We remove unneeded software to minimize the number of
software that could possibly be exploited.
• Remove unused services – Unused services are shutdown and their ports closed.
• Libsafe - Libsafe prevents buffer overflows and scans for exploitable software and notifies
the client daily if any is found.
• LCAP - LCAP restricts certain kernel capabilities, improving system security.
• eAccelerator - eAccelerator dramatically decreases page loading times by caching php
scripts in a compiled state.
• SSH Server Hardening - locks down and hardens the SSH server, including setting a wheel
user.
• Zend Optimizer / Ioncube Installation - Some scripts require Zend or Ioncube in order to
function.
• System Update - We bring your operating system packages completely up to date.
• Nessus Security Scan - We perform a full system security scan on your server and patch
any vulnerabilities found.
• Minor Adjustments - Finally we make several minor adjustments to the system to improve
overall performance, security, and system health.
Please contact via my email : lieuhiep.tld@googlemail.comonly accept pay with paypal.
Regards.
