Linux Server Security
Posted: Tue Mar 25, 2008 7:56 pm
I have a Virtual Private Server hosting Ubuntu 7.10
Obviously I can SSH into the server with a root account...
What is the best way to keep my server secure.
1. User accounts? Obviously do not want to run as root all the time, what permissions should a general acount have, sudo? or if i have to do something special login as root?
2. Mysql Accounts? should the above user account have access to this?
3. FTP Accounts? and have ftp ability?
4. www folder permissions and what user should own them? and own the www folder?
Or one account for management, and another for mysql/ftp and another to own the www folder?
where is the best place to store the login information of the database for php scripts, in case your www folder gets compromised?
as far as iptables go, just the basic web ports right?
I know its alot of questions, if you take the time to answer, I thank you in advance
Obviously I can SSH into the server with a root account...
What is the best way to keep my server secure.
1. User accounts? Obviously do not want to run as root all the time, what permissions should a general acount have, sudo? or if i have to do something special login as root?
2. Mysql Accounts? should the above user account have access to this?
3. FTP Accounts? and have ftp ability?
4. www folder permissions and what user should own them? and own the www folder?
Or one account for management, and another for mysql/ftp and another to own the www folder?
where is the best place to store the login information of the database for php scripts, in case your www folder gets compromised?
as far as iptables go, just the basic web ports right?
I know its alot of questions, if you take the time to answer, I thank you in advance