Security tips needed

how?

Oh, that figures.

How can I use custom php.ini for ispconfig 3?

How to make all the other website on my server uses a disabled php.ini and ispconfig uses a different php.ini?

 

I didn't read this whole post but I installed mod_security and mod_evasive and it broke my ispconfig3.

when trying to create new email accounts i can't see any text and i get these errors.

Warning: tform::include(lib/lang/en_mail_user.lng) [tform.include]: failed to open stream: No such file or directory in /usr/local/ispconfig/interface/lib/classes/tform.inc.php on line 140

Warning: tform::include() [function.include]: Failed opening 'lib/lang/en_mail_user.lng' for inclusion (include_path='.:/usr/share/php:/usr/share/pear') in /usr/local/ispconfig/interface/lib/classes/tform.inc.php on line 140

and

ERROR

1. error_no_pwd
email_error_isemail

even after I removed them.

 

some apache2 values are misconfigured for security:

Code:

MaxConnPerIP 15 (not found in apache2.conf !!!)
KeepAliveTimeout 15 (must be 5 or 10 max)

what do you think ?

 

fail2ban installed by default does not block attacks DOS / DDOS ?

I tested the DOS attack:

Code:

wget http://ha.ckers.org/slowloris/slowloris.pl
chmod +x slowloris.pl
./slowloris.pl -dns ip

After 10 seconds my server is slow to load, it became inaccessible ...

I did:

Code:

netstat-tan | grep ip: 80 | wc-l

the result was: 300

I already installed mod-evasive but they failed to protect the server!!!

so, any solution ??

 

fail2ban just reacts on failed login attempts.

 

Looks like an old thread but this is the one that came up on google.

I got some questions regarding things that were mentioned in this thread and some more.

I now run ISPCofing 3 on debian and as mentioned here, the php.ini to edit for global website php settings is:
/etc/php5/cgi/php.ini

What I would like to know though is if that is the php.ini for the websites or for ISPConfig as well or if there is another one. I say that cause when I was using ISPCofig 2 I had messed some things and ended up with ISPConfing not working. I am not asking for cusotm php.ini for each website, I know how to do that. But I am not sure if ICPConfig 3 is using a separate php.ini file for the control panel, than the one I show above.

Now another thing is the default index.html plus some more files and dirs that get created upon website creation from ISPConfig 3. I had edited these in the past, right now I do remember the path. My question is, If I edit them will my changes be wiped by a future update ? And can I change the default permissions of them ? Because I would like all automated files created in the /web dir to be 644 and dirs to be 755 but the script used makes even the files executable (such as the .htaccess and index.html) and I see no reason for this. Same question goes for the error pages and stats directory. Generally, can I edit that script my own way or it will be wiped by an update ? and what are the paths I should look for it in debian/ispconfig3 ?

Also can we expect php5.4 support in the next ISPConfig 3 update ? I know there is a tutorial on how to add more php versions. I am just asking if such a thing will become a core feature of ISPConfig 3.

Those are some questions that came to my mind for now.

Thanks !
and keep up !