Dedicated Server Must Haves?

Discussion in 'Web Hosting' started by BlakHut, May 20, 2010.

  1. BlakHut

    BlakHut Newbie

    Apr 25, 2010
    Likes Received:
    So I'm finally getting a dedicated server, but I really don't know anything about server management. So I was wondering what are the must-have tweaks and softwares so my server will be FAST and SECURED? I'm only gonna be using it for Wordpress and Vbulletin.

  2. bhserve

    bhserve BANNED BANNED

    Jan 15, 2009
    Likes Received:
    I would recommend you get someone to manage your server. It is really very complicated if you are not familiar with it.
  3. CyrusVirus

    CyrusVirus BANNED BANNED Premium Member

    Aug 20, 2009
    Likes Received:
    just make sure you go with Linux. well... i went with windows, and i don't have to worry about permissions or anything, but i guess from what i hear, linux is easier to use. ii... ii still like my windows dedicated
  4. iglow

    iglow Elite Member

    Feb 20, 2009
    Likes Received:
    if u never had a server maybe get a managed hybrid vps or dedic? depends how big the forum is.
    surely use centos or debian and preferably cpanerl or directadmin as its easy to manage sites with them. DA is very easy to install urself, cpanel is a bit more tricky
  5. ds5010101

    ds5010101 Newbie

    Jan 17, 2010
    Likes Received:
    Install CSF, and find one with cisco network protection,
    buy a server that takes over 1000Gbit push.. like noboddy is ddhosing the site!
  6. mixcat

    mixcat Registered Member

    Jan 9, 2008
    Likes Received:
    I agree with DS5010101, CSF needs to be installed.

    Here are the must haves with Cpanel
    I only use Centos as the updates are very easy to take and its super stable.
    from SSH type "yum update" and thats it!
    Whats SSH? Secure Shell Command Line.
    If your using XP, Vista or Windows 7 you can use a FREE program that you can find on Google called Putty it's for SSH

    Want to save money and not have a management team?
    (OS & Cpanel Updates)
    OK Make sure you keep cpanel up to date! There is a link in your WHM interface for update Server Software and Update System Software..
    One is the OS and the other is Cpanel.
    Do these every month!

    (Web Server - Apache)
    OK now Use EZ Apache update. It is very easy to recompile apache AKA web server.
    You want to do the advanced option and select GD, MOD Security an any other options your scripts might need.
    Mod Security will harden your webserver a little and make sure people dont do some of the simple php or webserver exploits.

    (Security & Hardening)
    1) Firewall: CSF+LFD has to be installed and configured. Very simple!

    2) Install CHKRootKit, which is a program that looks for known signatures in trojaned system binaries, it basically detects if your system has been compromised.

    3) /tmp and /var/tmp has to be hardened and secured to prevent the execution of malicious scripts. Google how to do this.. Lots of guides.

    4) Installed Rootkit Hunter, which is scanning tool to find most types of exploits (backdoors, suspicious files, md5 hash comparisons, and is over 99% accurate in detecting such exploits.

    5) Install a root login notification script. This will send an e-mail alerts every time someone logs into your server as root. **** Very handy so you know when someone is in your server thats not you!****

    6) SSH harding! by restricting the SSH Protocol to SSH 2. SSH will still function the same way, just much secure..

    7) System Configuration Files host.conf & sysctl.conf needs to be secured and hardened to prevent DNS lookup poisoning and also provide protection against spoofs & to help prevent the TCP/IP stack from syn-flood attacks. It is also configured to prevet other various and similar network abuse.

    And Last, Make ALL passwords strong. Add letters, numbers and toss in a special char.
    So no one can guess.. No QWERTY123 or pass123! or passw0rd1 dont count as strong!

    I hope that helps.. Remember if you update and harden your box before you start using it; some scripts that might be exploitable on a less secure host will be like a brick house!

    If you need data center or webhosting company tips shoot me an IM I deal with many.
    • Thanks Thanks x 1
  7. hackNstuff

    hackNstuff BANNED BANNED Premium Member

    Jun 10, 2010
    Likes Received:
    Good post mixcat, I'll keep it all on my list to do :)