Gemhdar

Hey Lester,

Here is a little run down of what we include in a fully managed dedicated server:
All is done on a continual basis and proactively...

Install and configure Firewall
Binary Hardening
PhpsysInfo
Version Checker or portaudit
PAM Resource Limiting
Formmail Checker
AIDE installation and configuration
WhoCompiled - Check for compiler usage
Logwatch installation and configuration
Kernel update with grsecurity or custom changes
SSH access limitations and hardening


Optional Services*, provided on a per server basis after initial setup
Optional Services, must be requested only by e-mailing [email protected]

Check and clean the mail queue
Exiscan installation and configuration
Hardisk checking tool
Mailmon - Sendmail monitor
ClamAV installation and configuration
Snort w/Acid configuration
Apf with antidos capability - Optional
Mod_security module for Apache - Optional
MRTG installation and configuration - Optional
MailScanner install and configuration ? Optional Checking for root kits Scan for root kit on the server
Check logs and block all suspect ips
Check server load and partitions to perform maintenance activities Check /proc for hidden or unwanted processes
Clean up unwanted files from /tmp
Scan server for *.c or binary files (which have possible security issues)
Scan for Trojan Horses
Set cron jobs to remove log files rotated up to 3 or upwards (space saving measures)
Check tcp connections and make sure no unwanted ips or ports are listed Scan and clean the mail queue for viruses and SPAM Watchmysql - mysql monitor Disabling Telnet Access Securing named and host configuration files
PSAD - Port Scan Detector
PRM - Process resource monitor
PMON - Network socket monitor BFD - Brute force detection
SIM - System Integrity Monitor
SPRI - System priority configuration Scan system logs and block suspect IPs

Hit me up with any questions...