Denial-of-service attack (DoS attack) or Distributed Denial-of-service attack (DDoS attack) is an attempt to make a machine or network resource unavailable to its intended users. This attack generally target sites or services hosted on high-profile web servers such as banks, credit card payment gateways, and even root nameservers. DoS attacks are implemented by either forcing the targeted computer to reset, or consuming its resources so that it can no longer provide its services or obstructs the communication media between the users and the victim so that they can no longer communicate adequately.
(more…)
DNS is a very important part in any Network. Main objective of securing DNS includes secure exchange of data between DNS servers. Securing DNS queries, Zone transferes and DNS updates can be included in securing DNS. Here, we have mentioned two methods to secure DNS. ie, Securing dns through chroot and by editing named.conf. Please make sure that you have taken the backup of named.conf
1. Securing dns through chroot :-
Chroot function is a powerfull mechanism to secure the system. Chroot command uses a chroot() system call.
(more…)
SSH is a tool for secure remote login over insecure networks. It provides an encrypted terminal session with strong authentication of both the server and client, using public-key cryptography.
1. Use Strong Passwords/Usernames
choose passwords that contains:
Minimum of 8 characters
Mix of upper and lower case letters
Mix of letters and numbers
Non alphanumeric characters (e.g. special characters such as ! ” £ $ % ^ etc)
(more…)
Login into you server with the root login details and run following command
[root@server]# /usr/local/cpanel/bin/rebuild_phpconf –current
If server is Suexec then result would look like
==============
DEFAULT PHP: 5
PHP4 SAPI: suphp
PHP5 SAPI: suphp
SUEXEC: enabled
==============
If you are not sure about Shell then you can also check the SuExec is enabled or not from your WHM. Login into your WHM and in the menu find Configure PHP and SuExec
Check the drop down box for “PHP 4/5 Handler” – and if beside that it says “suPHP” – then the sever is SuExec enabled.
If you don’t have server root login details or WHM access, then you can create a php file under your account from cPanel >> File Manager and change the permissions on that file to 777 and open it in a browser. If it gives 500 Internal Server Error, then most probably running suPHP.
As well as you can also create the phpinfo page under your account from your cPanel >> File manager For ex. phpinfo.php with the following code
After creating phpinfo.php page browse it http://yourdomainname.com/phpinfo.php and if it shows “ “Server API = Apache then server is not running PHP in Suexec mode” and if Server API = CGI the server is running PHP in Suexec mode.
If you want to disable redirection to SSL connection while accessing WHM, cPanel, Webmail, please follows these steps.
Login to WHM >> Tweak Setting >> Uncheck the following options under Redirection.
Always redirect users to the ssl/tls ports when visiting /cpanel, /webmail, etc.
Also you have to uncheck the following option under Security in Tweak Settings.
Require SSL for all remote logins to cPanel, WHM and Webmail. This setting is recommended.
Also you can disable those options from the shell.
SSH to the server as root.
Open /var/cpanel/cpanel.config and set the following options to 0 (zero).
alwaysredirecttossl
requiressl
—-
alwaysredirecttossl=0
requiressl=0
—–
Save the file and exit.
