1 Root kit checker:-
Check for root kits and even set a root kit on a cron job. This will show you if anyone has compromised your root. Hackers and spammers will try to find insecure upload forms on your box and then with injection methods, try to upload the root kit on your server. If hacker can run it, it will modify maximum number of files, possibly causing you to have to reinstall.
To Install root kit, SSH into server and login as root. (Here we have used very common rootkit, i.e. chrootkit)
At command prompt (CMD) type below codes in order to set the above feature:
cd /root/ wget ftp://ftp.pangeia.com .br/pub/seg/pac/chkrootkit.tar.gzNow if you want to check chrootkit run following command in you CMD.
tar xvzf chkrootkit.tar.gz
cd chkrootkit-0.44
make sense
/root/chkrootkit-0.44/chkrootkit2 Installing a Root Breach Detector and Email Warning:-
If someone does happen to get root, be warned quickly and easily by installing a detector and warning at your inbox directly. You will at least get the hackers/spammers ip address and be warned someone is in there. Server will e-mail you everytime when someone logs in as root .
At command prompt (CMD) type below codes in order to set the above feature:
pico .bash_profileScroll down to the end of the file and add the following line also :-
echo 'ALERT - Root Shell Access on:' `date` `who` | mail -s "Alert: Root Access from `who | awk '{print $6}'`" XYZ@email.comNOTE : Green Text reflects that you have to enter your own mail id in which you want to receive mails.
Now Just Save and all done.
Set an SSH Legal Message :-
To set an SSH legal message, SSH into server and login as root.
At command prompt (CMD) type below codes :
pico /etc/motdEnter your customised message and then save.
Message Example : Warning! You are entering a secured area!! Your IP and login information have been recorded for future reference . All activities on this system are recorded and logged.
3 Updating Operating System and Softwares:-
Updating all softwares as well as OS may reduce risk of loosing data and securing your Private RDP from external forces, you can update many things by below process.
#If you are using cPanel:-
~Update cPanel: /scripts/upcp
~Update Apache: /scripts/easyapache
#If you are not using cPanel:-
~Update OS and software: yum upgrade
If any further problem persist then feel free to Contact Us Or simply reply below.
0 comments:
Post a Comment