DEV Community: Bineesh O C

Ansible fail2ban

Bineesh O C — Thu, 19 Dec 2024 05:52:44 +0000

Install Chkrootkit

Bineesh O C — Mon, 09 Sep 2024 04:45:13 +0000

Step 1: SSH into your server
The first thing we need to do is SSH or access your VPS or server with root privileges first

Step 2: Download software
wget -c https://src.fedoraproject.org/repo/pkgs/chkrootkit/chkrootkit-0.57.tar.gz/sha512/ff35f01042bc68bdd10c4e26dbde7af7127768442c7a10f114260188dcc7e357e2c48d157c0b83b99e2fd465db3ed3933c84ae12fa411c5c28f64b955e742ff7/chkrootkit-0.57.tar.gz

Step 3: Unzip and install
tar -zxvf chkrootkit-0.57.tar.gz
mkdir /usr/local/chkrootkit
mv chkrootkit-0.57/* /usr/local/chkrootkit
cd /usr/local/chkrootkit

Now you can run chkrootkit to scan the server with the command below:/>
/usr/local/chkrootkit/chkrootkit

Step 4: Install automatic rootkit scanning on the system
0 0 * * * /usr/local/chkrootkit/chkrootkit

for more installation support: https://winhat.in

Cyber security check lists

Bineesh O C — Sat, 07 Sep 2024 16:30:20 +0000

Change ssh port number from 22 to custom number
Disable root direct login or ssh access.
Setup ssh key login for all ssh users.
Block all port except http. https, ssh
Disable Unwanted Linux Services # chkconfig --list | grep '3:on'
Disable directory listing [Options Indexes]
Keep updating server Regularly # yum update -y
Install csf, fail2ban and mod_security
Hide Apache Version Number and Other Sensitive Info
Forward 80 port access to 443 i.e http to https
404 error redirect # ErrorDocument 404 https://domain.com/404.html
Check any of users have empty passwords # cat /etc/shadow | awk -F: '($2==""){print $1}'
Disable IPv6.
Block anonymous FTP upload
Disable unwanted php functions //disable_functions in php.ini
Disable weak ciphers

For more help and support https://winhat.in