Centos 5.7 - steps to take for extra security

Discussion in 'Server Operation' started by daseagle, Nov 11, 2011.

  1. daseagle

    daseagle New Member

    Hello!

    I'm running a Centos 5.7 x86, as mail / web server. It was installed by generally following the Howto.

    The server is generally running well, with no critical issues. However, I want to tie up a few loose ends if possible.

    After a few days operation, I saw in the logs that my ssh port was being probed a lot. So I installed Denyhosts and that pretty much solved the problem.

    The other issue is that since I have Squirrelmail, that is also receiving a lot of unwanted attention.

    So, my question is: is there any way to enforce a policy like "3 failed attempts to access webmail and ip goes on blacklist" ?

    -----
    Other problem would be: how can I block or modify version information ? I mean if somebody is probing the server, instead of getting Apache ver. XXXX, to get "go away :) ".

    -----

    As I am very new to the server part of Linux, any input is most welcome, since there must be a whole jungle of issues out there that never even occured to me.
     
  2. 8omas

    8omas Member HowtoForge Supporter

    Try fail2ban.
    There are a lot of posts in here about fail2ban.
     

Share This Page