VServer Setup Hardening: Unterschied zwischen den Versionen

Aus Java Student User Group Austria - Java + JVM in Wien Österreich / Vienna Austria
Wechseln zu: Navigation, Suche
(Die Seite wurde neu angelegt: „test“)
 
K (Pkofler verschob Seite Topic:VServer Setup Hardening nach VServer Setup Hardening ohne dabei eine Weiterleitung anzulegen: naming conventions)
 
(10 dazwischenliegende Versionen von 7 Benutzern werden nicht angezeigt)
Zeile 1: Zeile 1:
test
+
I (@manuelmaly) would wish for a presentation on vServer setup + hardening, because vServers have become cheap options at almost all hosting services, yet it surely is a very bad idea to just slap on some OS, hack Rails and MySQL onto it and press upload - I'm talking of installation issues and security aspects.
 +
My usecase would be: Rails (or Java, should be similar) web server with maximum security (yeah I know, there's no "maximum" security :P). The server also hosts a database and SSH server - an all-in-one web server machine, so to say.
 +
 
 +
Since I'm already making wishes, I would wish for the following setup to be explained:
 +
 
 +
* CentOS (Linux)
 +
* Apache (for rewriting)
 +
* Ruby & Rails 3
 +
* MySQL or PostgreSQL
 +
* OpenSSH
 +
* Some Firewall (don't know which is advisable)
 +
* Most crucial configuration and hardening actions (block ports, scan packets, remove unnecessary services,...)
 +
 
 +
I guess most of the installations will require one bash line, what I'm really interested in is the configuration (e.g. Apache rewrites for maintainance etc.).
 +
I wouldn't care too much about Mailserver etc., though it would be interesting if it could be squeezed in :)
 +
 
 +
Please tweet me at @manuelmaly if I have forgotten anything.
 +
 
 +
[[Category:Voting]]

Aktuelle Version vom 20. Februar 2013, 00:05 Uhr

I (@manuelmaly) would wish for a presentation on vServer setup + hardening, because vServers have become cheap options at almost all hosting services, yet it surely is a very bad idea to just slap on some OS, hack Rails and MySQL onto it and press upload - I'm talking of installation issues and security aspects. My usecase would be: Rails (or Java, should be similar) web server with maximum security (yeah I know, there's no "maximum" security :P). The server also hosts a database and SSH server - an all-in-one web server machine, so to say.

Since I'm already making wishes, I would wish for the following setup to be explained:

  • CentOS (Linux)
  • Apache (for rewriting)
  • Ruby & Rails 3
  • MySQL or PostgreSQL
  • OpenSSH
  • Some Firewall (don't know which is advisable)
  • Most crucial configuration and hardening actions (block ports, scan packets, remove unnecessary services,...)

I guess most of the installations will require one bash line, what I'm really interested in is the configuration (e.g. Apache rewrites for maintainance etc.). I wouldn't care too much about Mailserver etc., though it would be interesting if it could be squeezed in :)

Please tweet me at @manuelmaly if I have forgotten anything.