→ The ruleset that we use blocks dangerous attempts to hack the server. Add an additional rule or disabling one is possible for us whenever needed as it consists of many rules.
→ Compiled PHP version 4, 5 or 6 as per the requirements of the client.
→ Installation of mod_evasive to prevent DDoS Attacks.
→ PHP Security (disabling few php functions which can be used for php backdoor: "exec,system, passthru, readfile,shell_exec, escapeshellarg, escapeshellcmd, proc_close, proc_open, ini_alter ,dl, popen,parse_ini_file, show_source,curl_exec")
→ PHP as SUPHP.
→ open_basedir and mod_userdir restriction.
→ Disabling port 22 (default SSH port).
→ Brute Force Detection setup and configuration with the firewall.
→ Linux socket monitor setup - This will send you an alert whenever a new port is opened on the server.
→ DNS recursion restriction
→ Repair or Re-installation of corrupt binaries.
- Server load
→ The System will automatically try to fix any problems which may arise such as big log files that would automatically get recycled. If the system is not able to fix the problem itself it will send a notification to our support department.
→ Tweak Apache configuration.
→ Recompile Apache with commonly used Apache and PHP modules.
File Reansfer (From Server to Server)
→ Please use contact us for price.
→ Installing and compiling the latest version of OpenSSH and configuring it with the latest version of OpenSSL.
→ Disabling Root access and enabling key based access as per the client request.
→ Changing default SSH port, disabling SSH1 protocol and enabling SSH 2 protocol.
→ Disabling compilers for all users but root.
→ Sysctl.conf hardening to make it much harder to get attacked by syn floods.
→ Open basedir protection setup.
→ Installing chkrootkit and configuring it to send daily report to our support department.
→ Disabling Ftp access for the default cPanel users.
→ Password Policy - Password utilizing at least 8 characters including alphanumeric and grammatical symbols is recommended.
→ Installing & Configuring Malware Detect Software and ClamV Scanner.
→ Realtime FTP scanner applicable for pure FTP.