نمایش نتایج: از شماره 1 تا 9 , از مجموع 9

موضوع: کانفیگ سرور مجازی با پنل دایرکت ادمین

Threaded View

پست قبلی پست قبلی   پست بعدی پست بعدی
  1. #6
    عضو انجمن X2Maxer آواتار ها
    تاریخ عضویت
    Aug 2011
    محل سکونت
    NET
    نوشته ها
    112
    تشکر تشکر کرده 
    143
    تشکر تشکر شده 
    156
    تشکر شده در
    109 پست

    پیش فرض پاسخ : کانفیگ سرور مجازی با پنل دایرکت ادمین

    جناب alborzhost لطف کردن و csf نصب کردن.
    در قسمت check Server security خطاهای زیر رو میده :

    WARNING:
    Check /tmp is mounted as a filesystem -> /tmp should be mounted as a separate filesystem with the noexec,nosuid options set

    Check /var/tmp is mounted as a filesystem -> /var/tmp should either be symlinked to /tmp or mounted as a filesystem

    Check MySQL version -> You are running a legacy version of MySQL (v5.0.67) and should consider upgrading to v5.1.* as recommended by MySQL

    Check for kernel logger -> syslogd appears to be running, but not klogd which logs kernel firewall messages to syslog. You should ensure that klogd is running

    Check SSH on non-standard port -> You should consider moving SSH to a non-standard port [currently:22] to evade basic SSH port scans. Don't forget to open the port in the firewall first!

    Check SSH PasswordAuthentication -> For ultimate SSH security, you should consider disabling PasswordAuthentication and only allow access using PubkeyAuthentication

    Check SSH UseDNS -> You should disable UseDNS by editing /etc/ssh/sshd_config and setting:
    UseDNS no
    Otherwise, lfd will be unable to track SSHD login failures successfully as the log files will not report IP addresses

    Check exim for extended logging (log_selector) -> You should enable extended exim logging to enable easier tracking potential outgoing spam issues. Add:
    log_selector = +arguments +subject +received_recipients
    to /etc/exim.conf

    Check php for enable_dl or disabled dl() -> You should modify /usr/local/lib/php.ini and set:
    enable_dl = Off
    This prevents users from loading php modules that affect everyone on the server. Note that if use dynamic libraries, such as ioncube, you will have to load them directly in the PHP configuration (usually in /usr/local/lib/php.ini)

    Check php for disable_functions -> You should modify the PHP configuration and disable commonly abused php functions, e.g.:
    disable_functions = show_source, system, shell_exec, passthru, exec, phpinfo, popen, proc_open, allow_url_fopen
    Some client web scripts may break with some of these functions disabled, so you may have to remove them from this list

    Check php for ini_set disabled -> You should consider adding ini_set to the disable_functions in the PHP configuration as this setting allows PHP scripts to override global security and performance settings for PHP scripts. Adding ini_set can break PHP scripts and commenting out any use of ini_set in such scripts is advised


    Check php for Suhosin -> You should recompile PHP with Suhosin to add greater security to PHP

    Check DirectAdmin login is SSL only -> You should enable SSL only login to DirectAdmin

    Check VPS FTP PASV hole -> Since the Virtuozzo VPS iptables ip_conntrack_ftp kernel module is currently broken you have to open a PASV port hole in iptables for incoming FTP connections to work correctly. See the csf readme.txt under 'A note about FTP Connection Issues' on how to do this

    Check nameservers -> At least one of the configured nameservers:
    ns1.site.com
    ns2.site.com
    should be located in a topologically and geographically dispersed location on the Internet - See RFC 2182 (Section 3.1

    برای رفع این خطاها مرجعی یا راهنمایی رو سراغ دارین ؟
    ویرایش توسط X2Maxer : August 25th, 2011 در ساعت 18:00

اطلاعات موضوع

کاربرانی که در حال مشاهده این موضوع هستند

در حال حاضر 1 کاربر در حال مشاهده این موضوع است. (0 کاربران و 1 مهمان ها)

مجوز های ارسال و ویرایش

  • شما نمیتوانید موضوع جدیدی ارسال کنید
  • شما امکان ارسال پاسخ را ندارید
  • شما نمیتوانید فایل پیوست کنید.
  • شما نمیتوانید پست های خود را ویرایش کنید
  •