New on LowEndTalk? Please Register and read our Community Rules.
All new Registrations are manually reviewed and approved, so a short delay after registration may occur before your account becomes active.
All new Registrations are manually reviewed and approved, so a short delay after registration may occur before your account becomes active.
Comments
I think insecure passwords is probably the highest one... The amount of people we have had to explain to that a simple password will simply not cut it is scary...
Not installing security updates, weak passwords, insecure configuration of services.
Choose wrong providers.
password="password"
not installing updates, misconfigured programs
uses passwords as "incorrect"
i asked them why ?
they replied to me that if they forget the password then the system will tell them, "Your password is incorrect" >.>
Gives SolusVM a secure password
not disabling root login
not disabling password logins
not following step by step guides that tell you how to do above
following above step by step guides, then claiming they are server admins
more to come.
I do neither of the top two /yet/
On my to-do list haha.
how can i install windows?
port 22
They dont run apt-get install fail2ban
Insecure passwords, no firewall, no change SSH port.
These are some of the most important basic steps needed to secure a VPS
LAMP stack on some linux, passworded SSH, panels for everything.
Knowing nothing a the OS they're using on the server.
isn't that typical for a newbie? >.>
I see nothing wrong with non dictionary passwords :0 I want to see the bot that tries p€n!5 ;D
using the default configuration, like using the default passwords/login etc
purchase vps(s) and not logging into his vps(s)
i have a real case.... not testing the provider long enough for example 2months while adding too much credit in first 2 weeks ...oh yeah-
They don't read pages like this one.
Getting an OpenVZ
Not removing user accounts that came pre-installed from the provider's OS template, right @Nick_A?
You may take a look at my guide about the first 10 things you should do with a Linux server, including securing it: https://www.bitforce.io/linux-server/die-ersten-10-dinge-die-man-mit-einem-linux-server-tun-sollte/
They install stupid software like zPanel/Sentorra, etc.
I laugh so hard on this one
Misconfigurations...
-bash: apt-get: command not found
RHEL masterrace!
Misunderstanding on files and folder rights, there is so many sites with 777 just to make the CMS working many people dont know how to set permissions.
Does it REALLY matter in single tenant VPSs?