[SOLVED] How to keep a CentOS web server in a good shape?

abdoullah · 12-08-2010, 11:59 AM

Hi Guys,
We have a Centos web server, it will be used for online transactions and we definitly want to keep it in a good shape, do you guys have a link to some scripts that can help me do that?

TB0ne · 12-08-2010, 12:13 PM

Quote:

Originally Posted by abdoullah

Hi Guys,
We have a Centos web server, it will be used for online transactions and we definitly want to keep it in a good shape, do you guys have a link to some scripts that can help me do that?

How about some actual details?? Like version of CentOS, what kind of web server, and what exactly you mean by "good shape". That's a very vague question. You need to get a very clear idea of what you want to accomplish first. Once you do that, chances are a Google search can lead you to the information you need.

Also, any scripts that someone could share would be of limited use, since you would have to heavily edit them to fit your environment. Probably easier to write them yourself, to fit your environment and system.

abdoullah · 12-08-2010, 01:53 PM

Quote:

Originally Posted by TB0ne

How about some actual details?? Like version of CentOS, what kind of web server, and what exactly you mean by "good shape". That's a very vague question. You need to get a very clear idea of what you want to accomplish first. Once you do that, chances are a Google search can lead you to the information you need.

Also, any scripts that someone could share would be of limited use, since you would have to heavily edit them to fit your environment. Probably easier to write them yourself, to fit your environment and system.

Sorry if the question is vague, I'll follow your advices and get back to you guys if needed!

unSpawn · 12-08-2010, 07:41 PM

Quote:

Originally Posted by abdoullah

it will be used for online transactions

If you mean on-line transactions as in credit card payments then you should familiarize yourself with what rules and regulations organizations require you to adhere to. Before you do that you should familiarize yourself with the setup well enough to install, harden and maintain it properly. (And if you're not well-versed in all aspects of installing and maintaining such a setup, as in quality / risks, at least consider handing off tasks to those qualified and experienced.)
Sites to visit and topics you need to read up on are, in no particular order:
- any major Linux distribution sites wrt choice of Enterprise or Longterm Support version,
- your Linux distributions documentation with respect to security best practices,
- the CERT site documents wrt server hardening,
- the OWASP site with respect to common pitfalls, server hardening and web application testing,
- the PCI-DSS standard website for documentation if that's what you need to adhere to,
- and maybe read some of http://rkhunter.wiki.sourceforge.net/SECREF?f=print .

* Remember that you get out of it what you put into it: not having the required skills, not doing required research, failing to think and plan ahead and disregard for best practices are the best ways to waste time, effort and money and see your setup crash and burn at some point in time...

abdoullah · 12-09-2010, 07:36 AM

I really appreciate,Thank you very much for your valuable input!