LinuxQuestions.org
Welcome to the most active Linux Forum on the web.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Security
User Name
Password
Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.

Notices


Reply
  Search this Thread
Old 06-08-2005, 09:28 AM   #1
my-unix-dream
Member
 
Registered: Jun 2004
Distribution: live cd
Posts: 87

Rep: Reputation: 15
Question How to protect my dedicated server and websites ?


I want to rent a dedicated server from web hosting company(red hat 9.0,cpanel,lamp)and of course manage 247 services included.but somehow i still need to install 3rd party software,add ons,my choice of software by myself and i never have experience admin linux server.

i want to install webmin,openwebmail,game server script.....cgi.....from ssh ? telnet ? or other way ?
how do i create my personal account from being rooted or better secure method ??to upload files and install them ?

how to protect server from internet cracker and avoid to be hacked ??change contents of websites ?

what is difference from sudo,su,and being rooted account ??how to procure ?

thanks
 
Old 06-08-2005, 10:48 AM   #2
Artanicus
Member
 
Registered: Jan 2005
Location: Finland
Distribution: Ubuntu, Debian, Gentoo, Slackware
Posts: 827

Rep: Reputation: 31
there is no simple answer to your questions, but Ill try to give you useful ideas.. (:

Dedicated server, all yours I presume? So, do they install the OS for you and keep it in shape, or is that your job? Is Red Hat the distro of your choise (I hope youre not considering 9.0 seriously, its getting realy old you know..), or does the hosting company mandate Red Hat? These are just questions for you to think about and be sure.. (;

When set up, the majority of a linux distro will run fine by itself, aslong as you first set up a decent configuration for them. Red Hat I beleive delivers something like that out of the box, but cant vouch on that. What youll actually be doing, is installing the 3rd party software you need, updating them, and updating your distribution.

As the server will be out of your physical proximity, the only real way you can admin it is over ssh and webmin. Dont even think about telnet, disable that rightaway. Filetransfers you can do over secure shell copy (scp) or ftp (not recommended if you want absolute security, if you dont use ftp, disable it, and in so doing, you colose a possible-"great security threat").

"Rooting" is usually used as a term of gaining un-authorized root access (root is the master user of a unix system, basicly can do anything). The only real way to be safe from it, is to keep your system updated. If its very important to you, keep track of security sites like secunia.. If you see a vunerability that affects your software, update to a newer version or patch it.

Seriously, the most important thing, is to be up to date. That means, you dont have Red Hat 9 on a machiner, but instead RHEL 4 or Fedora Core 3, or any other newer linux distribution like Slackware 10.1 or Debian 3.1.. Newer packages have older issues fixed, thus giving you protection against that vunerability. Simple, aint it? (:

And then the different commands. 'su' comes from either Switch User or Super User, its an ongoing dispute which it is (switch user prolly.. (;). In practice it is a command you use to switch from user to another. (doh) Heres an example that will clarify:
Code:
artanicus@mymachine $ su
[enter root password]
root@mymachine # exit
artanicus@mymachine $ su anotheruser
[anotheruser's password]
anotheruser@mymachine $ su
[enter root password]
root@mymachine # su artanicus
artanicus@mymachine $ echo "See, aint it simple? (;"
edit: alomost forgot to mention. /etc/suauth is a nifty file to restrict who can use su. For eg, this is my restriction line from that file, restricting using 'su' to only the group 'trusted'.
Code:
ALL:ALL EXCEPT GROUP trusted:DENY

'sudo' is simply put, su do.. So, basicly by giving some users sudo rights to some commands, they can execute those commands as root, with their own password. Sudo is used in some distributions (for eg. Ubuntu) as a sort of replacement for root, to increase security. Sudo is a very large topic, and googling on it will reveal some nifty articles on it if your interested in learning more.

Last edited by Artanicus; 06-08-2005 at 10:52 AM.
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
Dedicated Server Distros (SME server and Censornet) Sugga Linux - General 2 09-22-2005 03:15 AM
Trend Micro Server Protect for Linux AS 2.1 matam17 Linux - Security 3 03-31-2005 12:00 PM
Is it possible to protect an old, unpached apache server? J_Szucs Linux - Security 3 12-18-2004 12:33 PM
Getting my first dedicated server Damainman Linux - Newbie 4 11-13-2003 04:48 PM
where to get UT dedicated server dkc_ace Linux - General 2 12-19-2002 07:11 AM

LinuxQuestions.org > Forums > Linux Forums > Linux - Security

All times are GMT -5. The time now is 11:02 AM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration