VServer Setup Hardening: Unterschied zwischen den Versionen
(Die Seite wurde neu angelegt: „test“) |
K (Pkofler verschob Seite Topic:VServer Setup Hardening nach VServer Setup Hardening ohne dabei eine Weiterleitung anzulegen: naming conventions) |
||
(10 dazwischenliegende Versionen von 7 Benutzern werden nicht angezeigt) | |||
Zeile 1: | Zeile 1: | ||
− | + | I (@manuelmaly) would wish for a presentation on vServer setup + hardening, because vServers have become cheap options at almost all hosting services, yet it surely is a very bad idea to just slap on some OS, hack Rails and MySQL onto it and press upload - I'm talking of installation issues and security aspects. | |
+ | My usecase would be: Rails (or Java, should be similar) web server with maximum security (yeah I know, there's no "maximum" security :P). The server also hosts a database and SSH server - an all-in-one web server machine, so to say. | ||
+ | |||
+ | Since I'm already making wishes, I would wish for the following setup to be explained: | ||
+ | |||
+ | * CentOS (Linux) | ||
+ | * Apache (for rewriting) | ||
+ | * Ruby & Rails 3 | ||
+ | * MySQL or PostgreSQL | ||
+ | * OpenSSH | ||
+ | * Some Firewall (don't know which is advisable) | ||
+ | * Most crucial configuration and hardening actions (block ports, scan packets, remove unnecessary services,...) | ||
+ | |||
+ | I guess most of the installations will require one bash line, what I'm really interested in is the configuration (e.g. Apache rewrites for maintainance etc.). | ||
+ | I wouldn't care too much about Mailserver etc., though it would be interesting if it could be squeezed in :) | ||
+ | |||
+ | Please tweet me at @manuelmaly if I have forgotten anything. | ||
+ | |||
+ | [[Category:Voting]] |
Aktuelle Version vom 20. Februar 2013, 00:05 Uhr
I (@manuelmaly) would wish for a presentation on vServer setup + hardening, because vServers have become cheap options at almost all hosting services, yet it surely is a very bad idea to just slap on some OS, hack Rails and MySQL onto it and press upload - I'm talking of installation issues and security aspects. My usecase would be: Rails (or Java, should be similar) web server with maximum security (yeah I know, there's no "maximum" security :P). The server also hosts a database and SSH server - an all-in-one web server machine, so to say.
Since I'm already making wishes, I would wish for the following setup to be explained:
- CentOS (Linux)
- Apache (for rewriting)
- Ruby & Rails 3
- MySQL or PostgreSQL
- OpenSSH
- Some Firewall (don't know which is advisable)
- Most crucial configuration and hardening actions (block ports, scan packets, remove unnecessary services,...)
I guess most of the installations will require one bash line, what I'm really interested in is the configuration (e.g. Apache rewrites for maintainance etc.). I wouldn't care too much about Mailserver etc., though it would be interesting if it could be squeezed in :)
Please tweet me at @manuelmaly if I have forgotten anything.