Soz, this post slipped by for a while...
Since it's a colo server, making sure root can't ssh in and changing dir/file permissions are about the only things you could do w/o some risk breaking things. /etc dir should be world readable/executable, but the most files need only rw for root user and group. For example for Apache have a look at
Security Tips for Server Configuration. After binding to port 80 as root, it will drop to User and Group defined in the httpd.conf, there's no need for /etc/httpd dir to be world readable/executable.
HTH somehow.