Request Info

Security tips for a secure server

Security through obscurity
Locked laptop
Security through obscurity is a common term that has been banded around for a while. It has very limited impact on actual security but can be applied for things like altering the default port on an application.

At UKFast, we already do this for SSH servers. Rather than run them on the common port of 22, we run them on something a little different to stop the usual port scans and attacks that occur on a second by second basis.

You can do this on systems such as your database server (MSSQL or MySQL) without having an impact on your site at all, depending on your coding styles and ethics.

Small changes like this will stop the usual attacks on your application/dedicated server but obviously won't stop the hardened attacker - for this, nothing beats a good firewall ruleset.

Secure server maintenance

Looking at good working practices in regard to server maintenance, the UKFast tech team’s top tip is about working on your dedicated server securely.

The majority of server administrators always login under the Administrator account on Windows servers, or the Root account on Linux servers to perform routine maintenance or checks.

Doing this means any changes or actions made under these accounts could result in accidental data loss or configuration changes causing loss of service.

It is recommended that additional accounts are created for staff/developers to access the server in the same manner. However, this means that mistakes on a live environment won't be as critical or would be denied due to lack of permission.

If a user needs to make a change or upgrade, they can still perform these same tasks by providing the Administrator or Root password.

You can also take this a step further on Linux servers and configure your SSH server to deny access to the root user by default. This will then mean that you require a standard account to first gain access and then su - to root level afterwards.

Click the link to find out about server security against hackers or request more information online.

banner

Web design by Harper James

Secure server solutions

Site Map