Server Hardening -- $75.00 (one-time)
Supported Operating Systems: Unix/Linux, BSD
FirmbIT is pleased to provide you with the most effective and unrivaled security solution for your server. We'll turn your Operating System from a fledgling server prone to attacks into a secured fortress. With many sensors, watchers and intrusion detection systems you'll always be notified about a slightest attempt of abusing your server's integrity. The cost of our package is minimal compared to the cost of recovering from a hacking incident.
We will setup the server any way you want. This includes custom configurations, software & script installation.
Ensuring your server is safe and secure as well as assessing its possible vulnerabilities.
Limit compiler & fetch utilities access to root only
Rootkit detection and elimination scans to stop intruders in their tracks.
Correct folder permissions to prevent directory transversal on unprivileged users
This prevents directory transversal by your users stopping them getting to sensitive areas of your server.
Configuration of your servers logging to ensure it catches any problems the moment they happen.
Host.conf & sysctl hardening
Making sure that your server is performing its best through configuration of the system control files is essential to optimized operation of your server.
Noexec, Nosuid temporary directory's
Securing of shared directories such as /tmp to ensure that hackers cannot operate in them.
Checks for trojans, rootkits, and other security problems.
Installation and configuration of APF
Firewall to protect you from unauthorized connections either in or out of your server as well as hacker and denial of service attacks.
SPRI (System priority) installation
A utility designed to queue different processes with different priority levels based on 3 class levels of importance.
Your kernel is the primary base of your Linux operating system. We update this to your operating systems latest release, closing security vulnerabilites that may have appeared in earlier revisions.
SSH Security Enhancements
Protecting the gates to your server you need the most secure configuration of your SSH daemon.
High Security Services Monitoring Setup
System and service integrity monitor to prevent exploits of existing web applications.
Active Load Monitoring
Load checking to ensure availability of services designed to give advance warning of potential server issues
Port Monitoring with Hacker-Detection
24/7 Port monitoring to alert you and automatically block attacks before they are in motion.
Upgrades to Pre-Installed Software
We upgrade all your pre-installed software to the latest stable version released by your OS/Software vendor.
Proc Security Hardening
Proc hardening of your server to deal with services beyond the firewall, to limit unwanted ICMP packets and deal with denial of service attacks while keeping the server resource efficient as well as automatic reporting of attackers.
Deactivation of Unused/Insecure Services
Saving you resources by deactivating services you do not need will boost speed and responsiveness of your server, as well as securing the services that hackers thrive on.
Setup Nameservers/Modify Hostname/Additional IP installation
Setting up DNS nameservers is a critical part of setting up a server for your business, this allows you to offer your private-name DNS nameservers to your clients. Setting your own hostname allows you personalize your server and enforce corporate branding on your server.