Multi server secure?

Discussion in 'Installation/Configuration' started by Lupi, Jun 2, 2016.

  1. Lupi

    Lupi Member

    ispconfig 3 -debian jessie
    When installing multiservers, (web, db, ns1, ns2 and mail.server.xx) how they are secure?
    What I mean: clamav is only installed on mail server if you folow installation guide (apt-get install amavisd-new spamassassin clamav clamav-daemon zoo unzip bzip2 arj nomarch lzop cabextract apt-listchanges libnet-ldap-perl libauthen-sasl-perl clamav-docs daemon libio-string-perl libio-socket-ssl-perl libnet-ident-perl zip libnet-dns-perl) .
    What protect another servers. Must clamav been installed on each server or? I belive yes. Can somebody explain that.
    Thank's
     
  2. Well, that's really up to your configuration.

    But in general:
    Webserver = maldet (malware scanner), clamav (virusscanner), rhunter (rootkit scanner)
    mailserver = clamav, rootkit scanner
    dns = rootkit just because you can
    db = rootkit, just because you can

    If you configure your webservers to also send emails though php mail() (instead you should force your users to use smtp, IMHO) it might be good to go for some kind of firewall that prevents outgoing connections, sockets, and other bad stuff.

    I also created a vpn network for the servers so that they can talk with each other without the issue of sending stuff in plain text.
    Same for my backup server. all data goes through the vpn and is thus encrypted.
     
    Lupi likes this.
  3. Lupi

    Lupi Member

    Thank's I'm going to install it :)
     
  4. Jesse Norell

    Jesse Norell Well-Known Member Staff Member Howtoforge Staff

    Croydon, till, Thaddeus and 1 other person like this.

Share This Page