I am seeing a lot of WordPress wp-login.php brute force attack these days. In this tutorial I will explain how to stop wp-login.php attack on a cPanel server.
For security reason it is recommended that you disable root SSH login to server. To SSH your server with root privileges you should create a new user and assign root privileges to this new user. In this tutorial, we will assign root privileges to a new user ravi on a CentOS server.
The main user / administrator of a Linux server is root. Here is how you can create a new user on your CentOS server / VPS. Login to your server as root as run following command to create a new user named ravi. /usr/sbin/adduser ravi Now set password for new user ravi passwd ravi Screenshot […]
I was recently installing and configuring a new server. After installing CentOS I installed Apache. But server IP was not opening default Apache page. I was getting ping reply from my computer to server IP. So, I quickly figured out that Port 80 and Port 224 on server are blocked for incoming web traffic. we […]
You can protect your server from XMAS Attacks and drop incoming malformed XMAS packets by applying following rule in IPTable. Login to your server via SSH as root and run following commands: iptables -A INPUT -p tcp –tcp-flags ALL ALL -j DROP /etc/init.d/iptables save /etc/init.d/iptables restart Done!!
Syn-flood attacks are common these days. Syn-flood attack means that the attackers open a new connection to the server, but do not state what they want. They just want to take up servers resources and increase server load. This type of attack can be controlled by adding a rule in IPTable to reject syn-flood attacks. […]
For security reason, you should block all incoming null packets requests to your server. All TCP requests with flag NONE to your server should be blocked. These are generally bad bots looking for security holes on your server to exploit. This can be easily done by adding a rule in IPTable / firewall. Login to […]
For security reason, it is recommended that you disable directory listings / indexing on your server. Apache default configuration comes with this feature enabled but its always a good idea to get it disabled unless you really need it. When this option is enabled, user can see the list of files / folder of a […]
This tutorial explains how you can start and stop firewall on a CentOS / RedHat Linux server. How to Stop / Disable firewall Below commands will stop / disable firewall of a redhat / centos server. Login to your server as root via SSH and run following commands: service iptables save service iptables stop chkconfig […]
This tutorial explains how you can list all current iptables rules on a RedHat / CentOS Linux server, and how you can clear / flush current iptables rules. How to list current iptables rules Below command will list of current iptables rules of your CentOS / RedHat Linux server. iptables -L How to Clear / […]