some tips on logins
- make sure root access via ssh is disabled
- move ssh from port 22
- install denyhosts
- if you're the only one accessing server you can add a simple line to
the bash profile for email alerts on login
echo `whoami`' login on host:'`hostname` from:`who` | mail -s "Alert:
`whoami` login on `hostname` " me at email.com
This is useful historical data even if your just sending to an email
which is not monitored. When you get hacked is all logs are cleaned.
(command utmpdump and last are also helpful)
/KB
On 04/01/2012 20:50, Kieran O'Sullivan wrote:
> Hi
> I running two drupal 5.5 (yes I know its old but it works) web sites on
> linux and so far I haven't been hacked. I have followed all of the drupal
> guidelines for security.
>> I am looking for anyone one who has experience with linux/apache/drupal to
> give me more advice especially if you have been hacked.
>> Thanks.
>>>>> --
> Irish Linux Users' Group mailing list
> About this list : http://mail.linux.ie/mailman/listinfo/ilug> Who we are : http://www.linux.ie/> Where we are : http://www.linux.ie/map/>
Maintained by the ILUG website team. The aim of Linux.ie is to
support and help commercial and private users of Linux in Ireland. You can
display ILUG news in your own webpages, read backend
information to find out how. Networking services kindly provided by HEAnet, server kindly donated by
Dell. Linux is a trademark of Linus Torvalds,
used with permission. No penguins were harmed in the production or maintenance
of this highly praised website. Looking for the
Indian Linux Users' Group? Try here. If you've read all this and aren't a lawyer: you should be!
