I have been using this free script on several hosting servers I manage and also advised it to several friends. Till today it was only Cpanel related. Several people have asked Jonathan to have it generic. He did. I can strongly advice this to secure your linux driven server.
Here is a copy paste of it’s ability to secure your server :
Breaking News: csf+lfd now works on non-cPanel generic Linux servers on the Operating Systems listed above!
This suite of scripts provides:
* Straight-forward SPI iptables firewall script
* Daemon process that checks for login authentication failures for:
o courier imap and pop3
o ssh
o non-ssl cpanel / whm / webmail (cPanel servers only)
o pure-pftd
o password protected web pages (htpasswd)
o mod_security failures
* POP3/IMAP login tracking to enforce logins per hour
* SSH login notification
* SU login notification
* Excessive connection blocking
* WHM configuration interface (cPanel servers only) or through Webmin
* WHM iptables report log (cPanel servers only)
* Easy upgrade between versions from within WHM (cPanel servers only) or through Webmin
* Easy upgrade between versions from shell
* A standard Webmin Module to configure csf is included in the distribution ready to install into Webmin – csfwebmin.tgz
* Pre-configured to work on a cPanel server with all the standard cPanel ports open (cPanel servers only)
* Auto-configures the SSH port if it’s non-standard on installation
* Block traffic on unused server IP addresses – helps reduce the risk to your server
* Alert when end-user scripts sending excessive emails per hour – for identifying spamming scripts
* Suspicious process reporting – reports potential exploits running on the server
* Excessive user processes reporting
* Excessive user process usage reporting and optional termination
* Suspicious file reporting – reports potential exploit files in /tmp and similar directories
* Directory and file watching – reports if a watched directory or a file changes
* Block traffic on the DShield Block List and the Spamhaus DROP List
* Pre-configured settings for Low, Medium or High firewall security (cPanel servers only)
* Works with multiple ethernet devices
* Server Security Check – Performs a basic security and settings check on the server (cPanel servers only)
* Allow Dynamic DNS IP addresses – always allow your IP address even if it changes whenever you connect to the internet
* Alert sent if server load average remains high for a specified length of time
Please read more about ConfigServer Firewall
And he does maintain it daily.. it is not a dead once installed you forget script. He has many more add ons to propose. Some free, some for a very modest price. And donate for the free ones, he spends a lot of time to give the very best.
I finally got rid of spam on servers using his MailScanner scripts… On average 1 spam gets trough to my box for on average 250 mails delivered. If you look a little back on this blog you can see the article I wrote about spam that includes some stats about spam catch rate
Make good use of it 
Similar Posts:
- Spam and our responsible behaviour
- Server move
- Terminal in OS X
- PHP 5.2.0
- MacLockPick : Crack a MacIntosh with a simple USB stick
Recent Comments