Server Security

Whether we like it or not, the Web is far from being a safe place. New security threats constantly appear, and the scale of existing ones grows. Hacking and DDos attacks made on demand, stealing data for sale – such things, unfortunately, have become pretty common. And so has unfair competition – using dirty tricks to damage competitors’ websites and databases. An unscrupulous competitor can easily have a server hacked or particular data stolen: such services are openly advertised on specialized forums. That is why owners of web resources, especially commercial ones, should take such issue as servers protection seriously.

Our experts know what to do in order to minimize the risk and will do their best to help you avoid most of security incidents. EsellMe team cares for all aspects of your servers’ security. Day by day we follow up security advisories and mailing lists for all software we use and if there is any exploit or security hole we instantly take necessary actions to eliminate the risk of being compromised. EsellMe uses strictest security policies and routines based on advisories of Red Hat, National Security Agency, SANS, and our own experience.

Security measures include:
  • Initial Server hardening
    We start security actions from the very beginning – the very first thing we do is comprehensive security audit. It helps to detect ‘ holes’ in security and liquidate them before some malefactor makes use of them. This approach noticeably reduce risk of a hacking attack.
  • Server updates and patching
    We are sure that security begins from good administration, which, in its turn, includes installing all updates and security patches as soon as they are released. This simple and routine procedure makes servers considerably safer, reducing risk of malware infection as well as hacking attacks.
  • File system inspection, system integrity audit
  • Recovery after a hacking attack
    Despite of all security measures taken properly and in time, any server might be hacked anyway. Probability of a hacks never zero – attackers can make use of unpatched vulnerabilities in software or undetected bugs in code. That is why it is very important to quickly mitigate the after-effects to minimize downtime of the server.
  • Anti-DDoS measures
    DDoS attacks are becoming more and more sophisticated, and the number of computers involved in them is constantly growing. Botnets used for cybercrimes, including DDos attacks, can be easily rented at specialized resources, and prices are cheap. So, security of servers is of top priority, whatever scale of your web project is. Our Support Team can mitigate DDoS attacks.
  • User- and application-level security
    host-based protection, network security and network services hardening (TCP, firewall, SSH, web servers, FTP, mail, DNS, NFS, user authentication etc)
  • System logs monitoring
  • Databases security services. Currently we support MySQL, PostgreSQL, Oracle
  • Encryption services to provide secure way to send your data over network (VPN, SSL etc.)
  • Protection against viruses and brute-force

Following are some of the tasks that is performed to tighten your Server Security.

  • Installation and administration of Firewall (ConfigServer Firewall - CSF)
  • Installation of rkhunter, chkrootkit, maldet malware scanning linux applications.
  • SSH hardening,
  • Check Basic Security.
  • /tmp and /var/tmp hardening
  • Install MyTOP, dstat
  • Install Bruteforce Detection
  • Install Process Resource Monitor - PRM
  • Install all configserver plugin
  • MySQL Server Optimization
  • Secure Apache Server.
  • Secure Exim Email server.
  • Secure PHP functions.
  • and more...