As we approach the end of the year, now might be a good time to review your security practices and fix any weaknesses in your system. The following are 5 basic security tips to keep your server secure.
1. Secure remote access – Whenever possible limit the amount of remote access users can obtain, and secure any necessary remote connections. Use SSH for encryption, and tunnel any other services through SSH.
2. Remove unused services – If you are not using a particular service, it should not be running on your system, especially if it is a networked service that could possibly have an exploit in the future.
3. Use tight permissions – Many third party web applications will recommend very loose permissions for their software when some of them are not necessary. When possible, tighten your file permissions and limit user access.
4. User control – Remove unused user accounts, and enforce strong user passwords. Many servers are attacked through vulnerable user accounts.
5. Check and double check – Just because you have not had any security problems does not mean they do not exist. Scan your system for vulnerabilities and perform regular audits to make sure everything is running smoothly.
In part 2, we will look at some more ways you can keep your server safe and manage your security with more consistency and ease.