But first you must know the legal considerations of not adequately protecting your server.
Attention, the following regulations are applicable in their entirety to VPS without an administration contract and that are delivered without any security configuration. In case you need help in this matter, you must formalize a contract for a managed service (Shared Hosting or Managed VPS) and thus delegate to GINERNET the responsibility of securing your server.
4.10. In those exceptional cases in which a conflict occurs, GINERNET could only reinstall the service by eliminating all the data and configurations that the server may have.
4.11. Consequently, GINERNET will only be responsible for the availability of the physical infrastructures, the network and the physical host corresponding to the service.
- The customer is responsible for the security of the server.
- The customer has the obligation to secure and protect his server by installing firewalls and tools against system intrusion.
- The customer has the obligation to know the necessary tools for the securing of servers.
- In the event that a server has been hacked and the client does not know how to correct the problem, from GINERNET we will only be able to reinstall the complete operating system of the VPS, eliminating any content within the VPS.
For this reason, we suspend the servers that we detect to be hacked, thus preserving the reputation of our network.
Tips for protecting a server
- Strong passwords: It is extremely important that your server has strong passwords, this is that it is a set of alphanumeric characters and symbols in combination with upper and lower case. You can this tool to check if your password is easy to crack.
- Block the ports you don’t use, or better yet, set a default blocking rule and enable only the ones you use. If you don’t know how to do this, we recommend installing the Webmin interface (Webmin for Debian or Ubuntu, Webmin for CentOS). It is a complete server management tool that does not cause conflicts with other panels that you already have installed on your server. Within webmin, you will be able to access the “Firewall” tool that will allow you, through the browser’s graphical interface, to secure your server in a very simple way, giving way only to those ports you use.
- Keep the operating system and all software installed on the server up to date. Developers who schedule updates for systems, do not do it on a whim, most of the times updates include security patches, do not forget that a system that is not updated is a vulnerable and hackable system. We are talking about the operating system itself and related software as well as the APPs that run on the server, such as WordPress, Prestashop, Drupal, etc … which are CMS especially attacked by the number of people (victims) who use them.
- Never, ever, use nulled software. You want to use an APP, module or template that has a license fee, but you have found “out there” an apparently “free” version or commonly known as “nulled”. These types of downloads include a prize. You are going to be able to use that software, but the hacker who has bothered to offer you that “bargain” does not do it for free and will have injected malicious code to take control of your server. Maybe it will steal your customer database, maybe it will use your server to send SPAM or in the worst case it will install a proxy to commit some kind of crime such as stealing credit cards. Don’t be naive and use only legally licensed software.
Don’t make it easy for them and protect your server as much as possible.