Hello again! Today’s topic is probably one of the most concerns of hosting a Web Server since if you fail to address this concern properly, you will probably end up compromising your sever one way or another. Yes, today we will be talking about the security aspects of Hosting a Server. I too had to secure my server from every possible threats and here’s what I learned in the process:
- Whatever you do, use a secure Password: This is probably a given but you’ll be surprised to find out how many people go for easy passwords just because they are easier to remember. I had a friend whose password was “Full Name + year of Birth”. Whatever you do, don’t be as dumb as my friend because if you do, you risk compromising the security of your Server over a petty issue of remembering a password. If you issues in remembering your password, just make a text file with all your passwords in it and secure it with a Master Password and you’re good to go.
- Always use a Secure SSH to remotely access your Server: If you regularly or not so regularly access your server remotely through an SSH, then it is probably better to move your SSH Port from 22 to something else as that will deter or at least hinder people with malicious intent because 22 is the default port and a lot of people check for port 22 by default in order to get access to your server.
- Disable any Daemons or Services not in use: A Daemon is a background process which allows for connections to your Server and can be exploited by hackers to infiltrate your Server. Scan your Server for all the Daemons and Services which you are not using and disable all of them. An additional measure can be to close every port which you are not using as this can further reduce the chances of an hacker gaining access to your Server from an unmonitored or unused Service or Daemon.
- Look after the Server constantly and Continuously: Keep a constant watch on your Server whenever someone installs a new Software or a new Account on your Server or uploads some files on your Server as someone can intentionally or unintentionally install a malicious software, a rootkit, a virus or a backdoor in your Server. Have some good Utility tools installed and constantly check your System for any irregularities which may occur.
- Have a Firewall in place: As a final measure, have a firewall in place on your Server. A firewall is a piece of Software which restricts access to every port except for publicly available ports and for ports which have been included in exceptions. So for example if a firewall has been configured to only allow connections to port 80 then a request for port 3306, a MySQL request will be denied automatically.
These some of the basic measures will go a long way in securing a server. And its not like implementing any of these measures requires a degree in Computer Science. All you need is an hour on Google and you will be able to implement all of these features easily in no time.
That’s all there is for today. See you all next time!