Increasing Parallels H-Sphere Security - FreeBSD
 

The following steps should increase the level of security of your Parallels H-Sphere Servers.

The steps listed in these documents are not meant to include every possible security measure that can be taken on Parallels H-Sphere systems, and are not meant to be the end all in server security; but reflect the most common, proven steps which can assure a solid base level of protection.

If you need more complete protection customized by each server to your needs, please call us toll free at 1-888-887-6727 or 1-717-484-1062, and ask to speak to a solutions consultant today!  You can also email us at

Please keep in mind security is a way of life and a life style. It is a set of procedures and policies that must be malleable, and yet followed consistently.

There is no such thing as a one time hardening just like there is no such thing as a one time anti-virus install. As new threats or attacks arise, it’s important that you never allow yourself to feel too safe or too secure, always check things out, always be open to learning new security philosophies, and always be on the look out for suspicious activity on your machines.

IMPORTANT NOTE:  This document is based on FreeBSD.  The concepts should be similar across operating systems, but the commands will very likely be different.  Also, never assume the directory structures exist in your system as written in the document. 

Never blindly follow security instructions -- read, review, compare, apply as it fits your system.

  1. Install patches as necessary; do on a regular basis
  2. Disable telnet
  3. Do an initial hardening of the operating system
  4. Remove regular user and world access from c compilers
  5. Secure host.conf
  6. Install chkrootkit, and set up in cron
  7. Install rootcheck, and set up in cron
  8. Install logcheck (similar to logwatch)
  9. Disable direct root login
  10. Only allow certain IP's access to SSH
  11. Secure the /tmp partition
  12. Install a firewall
  13. Set PHP up for safe mode on
  14. Turn off server signatures
  15. If you are going to grant shell access in a shared environment
  16. What if I have to regenerate the SSH Key?
  17. Change your passwords on a regular basis
  18. Daily routine

Also see System Administrator Resources

IMPORTANT NOTE:  This document and all linked document is being provided as a good will gesture to the Parallels H-Sphere community and to others who may benefit from its use.  Dynamic Net, Inc. makes no representations implied or explicit as to their value or warranty. Dynamic Net, Inc. will not be held liable for any damage resulting in the application of the steps and procedures noted.  If you feel uncomfortable at all about doing any of the steps, make a complete system backup and hire a third party like We Manage Servers to do the work for you.  We Manage Servers is a division of Dynamic Net, Inc.

  

 
 

Home ::  About :: Testimonials  ::  Articles ::  Employment ::  Contact
 Services ::  Web Hosting ::  Managed Services :: Parallels H-Sphere  :: Monitoring :: ShopSite 
 Resellers ::   Program ::  Compare Plans ::  Private Label		    
  :::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::
  Legal Notices - Acceptable Use Policy, Contract, Copyright, Terms of Service

See our privacy statement for questions on how we use information gained by our site.

 Managed Services provided by We Manage Servers