Hello grsec community,
I have been thinking about buying a dedi to offer free hosting plans including shell access, mysql and php ( with curl, system, mail functions active ). This means that my system needs to be bulletproof against hacking attempts. A friend said that i need to configure grsec on level high and the acl perms. Any other suggestions ?
Thanks.
Free hosting services
2 posts
• Page 1 of 1
Free hosting services
by danny88 » Sun Nov 14, 2010 1:50 pm
- danny88
- Posts: 1
- Joined: Sun Nov 14, 2010 1:41 pm
Re: Free hosting services
by tjh » Sun Nov 14, 2010 7:08 pm
I'd be configuring each setting in grsecurity by hand. If you don't understand each option, how are you going to react if you are attacked?
Remove all compilers etc from the system. Ensure you enable trusted path security in GRSEC.
I'd also look at disabling modules on the system, having a kernel that only has the minimum options you need to get the system doing what you want it to do. Make sure only the bare minimum packages are installed etc.
Hope this helps.
Remove all compilers etc from the system. Ensure you enable trusted path security in GRSEC.
I'd also look at disabling modules on the system, having a kernel that only has the minimum options you need to get the system doing what you want it to do. Make sure only the bare minimum packages are installed etc.
Hope this helps.
- tjh
- Posts: 102
- Joined: Sat Oct 16, 2004 8:19 pm
2 posts
• Page 1 of 1