harden the server avoid spam ?
Hi,
may i ask,when you install your cpanel server,
do you take what setting modify to secure your server to avoid spam on your server,
because some site may be upload script to spam,
1. i hope those script can not be uploaded.
2. of course,if cms is not updated and those spam script be upload,
how can i limit those spam script to have mailbox auth before sending mail oit ?
thanks
-
with CXS + modsecurity you stop hacker from uploading such a scripts. 0 -
with CXS + modsecurity you stop hacker from uploading such a scripts.
if i only install modsecurity with atomicorp.com's rule,it will not block those uploading ?0 -
Yes, definitely it will. Depends on the way the hacker uploading the files. However, not all code in file restrict by Mod-security rules. You really don't know what sort of code is included in file and mod-security rules works as they are defined. Mostly such files being uploaded by vulnerabilities found in site/plugins/modules etc.. Mod-security helps from uploading files from such a way. And with addition of CXS (ConfigServer eXploit Scanner). CXS does scan each uploaded file in real time. It may be from web upload or FTP. If CXS found any such malicious code in file it quarantine such file immediately. And a rule of mod-security for cxs, you can blocked the hackers IP on the server to prevent further uploading. Its up to you, you can first test with only atomic rules and if necessary go with cxs as well :) 0 -
may i ask more.. does CXS use Mod-security rules(such as atomicorp.com's rule) to scan ? or CXS has his own rule ? 0
Please sign in to leave a comment.
Comments
6 comments