New on LowEndTalk? Please Register and read our Community Rules.
All new Registrations are manually reviewed and approved, so a short delay after registration may occur before your account becomes active.
All new Registrations are manually reviewed and approved, so a short delay after registration may occur before your account becomes active.
Comments
Keep track of what's listening on what ports. Use non standard ports. Monitor and log all traffic on those ports. Block brute force attempts. Rate limit problem areas with iptables where it doesn't negatively impact reasonable use. Set up email alerts for every action. Have a remote node monitor system files for changes. Use keys above passwords.
Relevant packages: fail2ban, iptables, logwatch
Suggested reading: http://www.howtoforge.com
Jarland's suggestions will help quite a bit, but in practice, a lot of it will be out of your control and you would have to rely on your provider.
@jarland Thanks! Helps a lot.