Answer the question
In order to leave comments, you need to log in
How to protect your ubuntu server from hacks and various attacks?
Hello, please tell me the solutions to protect your server on ubuntu server 14.04 from various attacks such as DDoS, brute force, etc.
I saw such a thing as Fail2ban on the net, but I haven’t installed it yet, suddenly there are some analogues that are much faster and smarter.
And even if I install Fail2ban and configure it to prevent attacks on services like Apache2, should I also raise mod_dosevasive or will there be conflicts?
All I need to protect is Apache2, php5, mysql, ssh, vsftpd
Answer the question
In order to leave comments, you need to log in
Fail2ban for DDoS protection is like gasoline for firefighting. From brute it helps in principle, but there is no magic pill, I haven’t seen any books on protection against all types of attacks for dummies either, so either dig deep into all aspects of security or outsource it to specially trained people, all notes of the form: "protection against all attacks on knee in 10 minutes" - in a real attack they will help, like aspirin in a heart attack.
MySQL if does not look outside, then it is possible to hide so.
Either skip-networking or bind locally.
For SSH, Knocking + fail2ban is fine.
Under the rest careful adjustment of a firewall.
But even that is only a small part of what can be done.
Didn't find what you were looking for?
Ask your questionAsk a Question
731 491 924 answers to any question