LinuxQuestions.org
Help answer threads with 0 replies.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Security
User Name
Password
Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.

Notices


Reply
  Search this Thread
Old 04-29-2004, 01:32 PM   #1
itware
LQ Newbie
 
Registered: Apr 2004
Posts: 1

Rep: Reputation: 0
VPS security??


Hello,

I have my VPS account setup recently, as almost VPS provider offer FULL MANAGE service, so in this case, do i need to install firewall on my VPS server?

Thank you,
 
Old 04-30-2004, 11:50 AM   #2
zaphodiv
Member
 
Registered: Oct 2003
Distribution: Slackware
Posts: 388

Rep: Reputation: 30
Presumably you mean a Virtual Private Sever, root on a linux server with an
internet ip address and bandwidth.
If you are paying for managed service then your provider should answer questions like this. Ask them.

If there are no security holes then you don't need a firewall. If you have security holes you should fix the holes. If you are running services that should not be accessable from other machine then turn off the services or configure them to only listen on the localhost interface.
 
Old 05-06-2004, 12:02 PM   #3
zaphodiv
Member
 
Registered: Oct 2003
Distribution: Slackware
Posts: 388

Rep: Reputation: 30
I should add that if you want to go for maximum possible secuirty over the box being easy to use you could add a firewall to block all connection excepts those that are known to be required, eg if the box just runs a webserver you could block all connections except incoming connections to port 80. If someone cracks the box using an exploit for the web server software and you have the server processing running as a none root user they will have trouble spawning a shell on another port, ftping a rootkit into the box and doing other typical activity.

The "everything that is not specifically permitted is forbidden" approach is a pain when you firewall yourself out of the box and can't connect with
ssh. Blocking all outgoing connections will break non passive mode ftp.
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
Where can I download UML VPS or Xen VPS to make a virtual private server? abefroman Linux - Software 3 12-09-2005 11:00 AM
New installation of a VPS with Slackware: Strange filtered ports fax8 Linux - Security 5 09-10-2005 10:13 AM
How to install a VPS / where to find it (Virtual Private Server) McNadia Linux - Software 1 01-05-2005 04:52 AM
How to setup DNS on a VPS ? fur Linux - Networking 9 04-06-2004 04:35 PM
How do I setup a VPS? abefroman Linux - Networking 2 03-12-2004 10:50 AM

LinuxQuestions.org > Forums > Linux Forums > Linux - Security

All times are GMT -5. The time now is 03:36 AM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration