Server Hardening is the process of enhancing server security through a variety of means which results in a much more secure server operating environment. This is due to the advanced security measures that are put in place during the server hardening process. This is the what we can do for you:
- Disable server banners (can be used by an attacker to research exploits against the services running on the server).
- Install an Intrusion Detection System (sends an email daily reporting on any binaries that may have been modified by an attacker).
- Enable automatic updates (when supported, this enables your server to always run the most current version of critical server software, which can prevent an attacker from gaining access to your server via an older exploit).
- Enable security features present in server applications designed to mitigate the possibility of a remote compromise via an insecure script or service (an example of this would be the safe_mode feature in PHP).
- Configure and install mod_security, a common Apache module that helps to prevent server compromises by adding an additional layer of security to web applications.
- Create a robust and secure firewall that lets all of the traffic that you want in to the server, but nothing else. Often, a server can be compromised by a service that was never intended to be exposed to the Internet!
- Finally, documentation will be provided to you that details the exact steps used to secure your server, and tips on how to keep your server secured.