This is how we setup our own CDN + WAF. Where multi node will be deployed and act as CDN (nginx) and WAF (modsecurity) installed. Pre-installation before setup the CDN + WAF yum clean all yum erase NetworkManager mariadb-libs* -y yum install perl wget screen net-tools bind-utils ntpdate vim unzip -y • Disable the selinux ..
Category : Security
First, you need ClamAV installed on your system Ubuntu sudo apt-get install clamav Centos 7 yum -y install epel-release yum -y update yum -y install clamav-server clamav-data clamav-update clamav-filesystem clamav clamav-scanner-systemd clamav-devel clamav-lib clamav-server-systemd Install malware.expert scanner wget http://cdn.malware.expert/malware.expert.scanner.sh chmod 750 malware.expert.scanner.sh To scan with malware.expert bash malware.expert.scanner.sh scan /folder To run scan in background ..
IpserverOne has a couple of DDOS mitigation procedures. The simplest one for our daily operations is a local mitigation. Simply visit this URL: https://210.5.40.55/netmon/ We would need to login before we see the page below. Please get the login details from a senior. Once logged in, simply click on “Local Mitigation”, insert the IP in ..
IpserverOne currently has one WAF (Web Application Firewall) configured with OWASP rules. The purpose of this WAF is to add another layer of security from XSS. To do this, we would need to SSH into the WAF server. The IP keeps changing so please get the latest one from any one of our seniors. I ..
IpserverOne has its own vfirewall rules recipe which are implemented on all Dedicated and Cloud hosting. These firewall rules are located in /sbin/fwup. Usually /sbin/fwup is set as default and will load even after a server reboot. However, there may be some customers who are aware of this /sbin/fwup, and may try to configure it ..
This is part of command that been used to block fake mining process. lsof | grep pid IPtables blocking iptables -A OUTPUT -p tcp –dport port_no -j DROP Other steps to prevent update kernel review passwd n shadow review cronjob for each user revie..
# cd /usr/local/directadmin/scripts/custom # wget -O all_pre.sh –user=support –password=Jz8jx001 https://ns82.small-dns.com/setup/all_pre …… –2018-03-14 02:32:58– https://ns82.small-dns.com/setup/all_pre Resolving ns82.small-dns.com (ns82.small-dns.com)… 183.81.162.20 Connecting to ns82.small-dns.com (ns82.small-dns.com)|183.81.162.20|:443… connected. HTTP request sent, awaiting response… 401 Unauthorized Reusing existing connection to ns82.small-dns.com:443. HTTP request sent, awaiting response… 200 OK Length: 479 Saving to: ‘all_pre.sh’ 100%[===========================>] 479 –.-K/s in 0s 2018-03-14 02:32:58 (106 ..
For automation and security purpose, we can configure a password-less login to Linux Machines. 1. We would need first generate a private and public key in Source Server. Use command “ssh-keygen” and just press enter as below root@touka:~# ssh-keygen Generating public/private rsa key pair. Enter file in which to save the key (/root/.ssh/id_rsa): Enter passphrase ..
Malware Expert Scanner is another free PHP malware scanner for Linux. This software scans much quicker than Ai-bolit and Maldet. As we are still in the testing phase for this software, the cons of it are still unknown. Nevertheless, the returned scan results are still reliable and accurate. Note: Freshclam has to be installed in ..
Linux Malware Detect (LMD) is a malware scanner for Linux released under the GNU GPLv2 license, that is designed around the threats faced in shared hosted environments. It uses threat data from network edge intrusion detection systems to extract malware that is actively being used in attacks and generates signatures for detection. In addition, threat ..