Solved How do you protect your Linux web servers
-
Just read this http://www.tecmint.com/install-linux-malware-detect-lmd-in-rhel-centos-and-fedora/
Since there are new attacks emerging targeting web servers, what are your security best practices. (http://mangolassi.it/topic/6735/linux-ransomware-is-now-attacking-webmasters/2)
My servers are all managed using cPanel with configserver firewall installed. Auto updates critical security patches via cPanel, and csf blocks brute force attacks and such. Have Clamav as well. Read about rootkit hunter and the malware detect tool mentioned above. Anyone using these?
-
How much does ClamAV do for scanning for Linux threats as opposed to just Windows threats that might be sitting on a Linux machine?
-
ClamAV gives some basic protection, at least something is better than not having anything.
-
For a time, I used ClamAV to scan every file in my Apache & IIS websites (both were on Windows) for viruses. It caught a few shell injections that had been uploaded and we were able to clean.
I think a nightly scan / report -- or better yet, a live-scan & report would be excellent.
-
Yes and probably install rootkit hunter as well! http://www.tecmint.com/install-linux-rkhunter-rootkit-hunter-in-rhel-centos-and-fedora/
