Your security Hardening...
Hello LET members,
Today I pose a nice thread, that maybe.. won't get det.._ derailed? Really? It wont? Yes. It will.
I have a question, when you first get that new OVZ server, or a dedicated server, how do you go about hardening it? Do you instantly run some "top secret" script, or do you simply do a
passwd change and a port change?
Your scenario is this: Server that will be used only for you, has 2 assigned IP's and is not listed on any blacklists. The server will be used as a production server as a webserver hosting your personal blog and a status script for the other bunch of LEB's you have.
How do you secure it? How do you monitor it? What would be your optimisation of security?
I'm interested into whom is using the most hardened server techniques, and who're just leaving it as "root123" or "toor".
So let the thread begin!
Junior Pen Tester