Preinstalled Services

The following services are preinstalled for cPanel/WHM servers.

Preliminary Security configuration

  • Secure /tmp (noexec, nosuid, nodev )
  • mod_security
  • phpSueXec
  • Secured /root/.my.cnf
  • Remove the /dev/shm entry from the fstab
  • Unmount /dev/shm set permissions to 755
  • Block all outgoing connections to port 22 using iptables
  • Latest Secure Stable kernel
  • APF firewall basic install
  • C and C++ compilers are disabled. Many canned exploits require a working c on the system
  • Linux Environment Security:
    Root-only permissions on binaries, path traversal, immutable bit on rpm, shell scripts
  • Linux Socket Monitor: designed to track changes to Network sockets and Unix domain sockets


Pre-compiled Apache / PHP settings
  • Imagemagick
  • GD
  • GD2
  • Zend
  • Curl w/SSL
  • MySQL 5.xx
  • PHP 5.xx


Initial setup
  • Hostname configuration
  • DNS ns1/ns2 setup
  • Incremental backups daily, weekly, monthly (servers with dual drives)
  • Secure root password set
  • Awstats, Webstats configured
  • ntsysv configured

   
© 2008 Hudson Valley Host.com, Inc. All rights reserved. Terms of Use and Disclaimer