I highly recommend using SSH. SSH provides both secure file transfer via secure ftp and secure cp as well as provides you encrypted communications when away from your server. For security, iptables is a very good firewall. When designing your rules start with a close everything and only what I need approach. You can write a highly effective firewall in just a few lines. Also, on some distros xinetd supports scheduling. For example, if you know that you are not going to be accessing a certain service during certain hours and it is controlled by xinetd, you can disable login. Don't forget using xinetd's allow from and tcp wrappers to further lock down your system. Though I have several machines behind a Watchguard firewall, I still put in layers of access control.
Also, if you are running PHP-MySQL applications, check into ModSecurity (www.modsecurity.org). This can prevent exploits of your web based applications. If you are not a linux security guru, this can go a long way in helping secure your web server from web-based attacks.
Learn about Linux
Download Linux
Get Linux help
SSH
Posted by: rackaid on July 08, 2007 03:42 PMAlso, if you are running PHP-MySQL applications, check into ModSecurity (www.modsecurity.org). This can prevent exploits of your web based applications. If you are not a linux security guru, this can go a long way in helping secure your web server from web-based attacks.
#