Security Basics: securing linux webserver?

Nmap Security Scanner

Intro

Ref Guide

Install Guide

Download

Changelog

Book

Docs
Security Lists

Bugtraq

Basics

More
Security Tools

More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

Security Basics mailing list archives

securing linux webserver?

From: Kurt Leum <sarinshadow () yahoo com>
Date: Sun, 27 Feb 2005 18:04:12 -0800 (PST)

sorry to be so noob,

A friend of mine set up a webserver:
http://www.globalgamesearch.com
problem is, he and I have no idea how to go about
securing it;
he started with SuSE Linux 9.1 with Apache 2.0, PHP
4.3.1, and MySQL out of the box and put it up.

about half an hour ago, an intruder broke in, replaced
SSHD with a back door, and pretty much screwed the
system up.

We're going to reinstall the system with minimal
programs, extremely secure permissions and a basic
firewall, but beyond that we have no clue what to do. 
Can anyone here please help me out on this? 
Thanks in advance for any help.


                
__________________________________ 
Do you Yahoo!? 
Yahoo! Mail - Find what you need with new enhanced search.
http://info.mail.yahoo.com/mail_250

By Date By Thread

Current thread:

securing linux webserver? Kurt Leum (Feb 28)
- Re: securing linux webserver? Alejandro Flores (Mar 01)
- Re: securing linux webserver? John Doe (Mar 01)
  - Re: securing linux webserver? Aman Raheja (Mar 01)
    - Re: securing linux webserver? Hamish Stanaway (Mar 03)
  - Re: securing linux webserver? Eduardo Kienetz (Mar 01)