| SYSTEM INFORMATION | |
|---|---|
| OS type and version: | Debian 10 |
| Webmin version: | 1.981 |
| Virtualmin version: | 6.16 Pro |
| Related products version: | webmin - virtualmin |
Hello!
I have a fresh installed VPS and need some help about configuretion max. system security, against hacking! I’ll host just 5 domains on Typo3 with webshop.
Please, help me to do it!
Best regards,
Goran
There has been discussion about this in the forum and the general consensus is that Virtualmin with Fail2Ban (which is enabled and configured out of the box when Virtualmin is installed with default options) is as secure a system as one could hope to have.
I’m currently trying CSF firewall which has a Virtualmin interface module.
Its very easy to find IP bans, remove unwanted bans, change settings (with the cog on the top left side of the screen shot) etc.
From my understanding you disable Firewalld and Fail2Ban as CSF/LFD clashes with the two bits of software.
I used this guide https://supporthost.in/install-csf-firewall-on-webmin/
Then manually disabled fail2ban autostart in virtualmin. then in the debian systemd.
systemctl disable fail2ban
When installing the Webmin module ( /etc/csf/csfwebmin.tgz) I had to go through the module install twice for it to install (I had to do this twice installing CSF Module on a CentOS machine too).
I’ve used CSF on another server with CWP7 for quite a while and havent any issues as yet. I like CSF for the features like country ban for specific ports, flood attack, emergency attack features (to enable when under attack) and like the email notifications on SSH user login, IP bans etc.
I see you are also on debian 10.
I’ve had no issues on that OS as yet.
However when installing CSF on a CentOS7 machine it caused errors with the Virtualmin script installer. When installing a script on a domain (lets say Roundcube) the whole domain would give a 500 error.
Another good bit of security:
LMD (Linux Malware Detect) is an open source malware detector for Linux operating systems. LMD is particularly designed for shared hosting environments to detect and clear threats in users file.
It also has email functions to let you know when it quarantines files etc.
Will do scans and email reports…
Also:
rkhunter (Rootkit Hunter) is a Unix-based tool that scans for rootkits, backdoors and possible local exploits. It does this by comparing SHA-1 hashes of important files with known good ones in online databases, searching for default directories (of rootkits), wrong permissions, hidden files, suspicious strings in kernel modules, and special tests for Linux and FreeBSD. rkhunter is notable due to its inclusion in popular operating systems (Fedora,[1] Debian,[2] etc.)
Be interested on other users opinions to your question too!
@xtalksi1 hi, possibly I am posting this on wrong topic…normally I would offer help if you describe problem but since you just want help out to secure your server by any means I can offer commercial support for virtualmin gpl/pro debian server as an pay as you go option with my prices to be affordable and within reason. I’ve been using virtualmin on debian servers since 2011 and debian itself from 2009.
If this is something you looking for, feel free to send me a DM to my profile. Here is small list what I could do for you.
Note if you need something which is not on this list feel free to ask me about it.
Disclaimer: I don’t work for Virtualmin, Inc and I am not part of the virtualmin team, I am independent freelancer so my services are outside of Virtualmin, Inc.
This topic was automatically closed 60 days after the last reply. New replies are no longer allowed.
