Security tips

From Oxxus Wiki

Jump to: navigation, search

For most-secure VPS servers take a look at our VPS hosting offer.

Security tip: Changing daemon port

Standard ports are easily targeted. If it's not absolutely essential for you to keep your daemon running at its standard port, you should always change it to something higher. For example, instead of using SSH port 22, you can configure SSH daemon in /etc/ssh/sshd_config to use port 17755 or something different. If you keep your port a secret, it should be hard for someone not especially interested in your server to find it and exploit SSH vulnerability or brute-force the password in. You can change other daemon ports like FTP server, Tomcat, pop3, imap, …

Security tip: Encryption

Although we don't provide file system encryption as a VPS provider, it's possible to make one on your dedicated server. You can also use various encryption tools to encrypt sensitive data in your MySql database and on your file system.

It's also important to use SSL connections whenever possible. For example, dovecot offers imap-ssl by default, pop3-ssl connections, so you could take advantage on those features on our VPS and protect the data you are exchanging with the server. Postfix also offers similar mechanism called TLS which is enabled by default.

Retrieved from "http://oxxus.net/wiki/Security_tips"
Contact About Us Support Network Servers Java Hosting Oxxus.net Order Now! Dedicated Servers VPS Hosting Tomcat Hosting Java Hosting Money Back Guarantee Privacy Policy Oxxus.net Terms of Service Contact About Us Servers Networks Support Domain Names SSL Certificates Java Wiki Tutorials E-learning Platforms