rackAID Logo

Industry Solutions Support Services » Security Solutions » Server Hardening
 Troubleshooting
 Server Management
 Backup Solutions
 Server Deployment
 Security Solutions
  Antivirus Solutions
  Ecommerce Security
  Incident Investigation
  Server Hardening
  PCI Compliance
  SSL Certificates
 Migration Services
 Custom Support
Search:

Support Services

Security Solutions

Server Hardening

Server Hardening Highlights

  • Adhere to Best Practices
  • Standardized Techniques
  • Rapid Deployment
  • Nessus Security Audit
  • Reduced Security Exposure
  • Improved Access Control
Server hardening is not simply a checklist of items. Adding unnecessary or unproven software does little to enhance security. The effectiveness of many popular tools that appear in checklists has never been documented. Many of these tools only protect against theoretical threats not real-world attacks. rackAID does not use a quick install script or simple checklist when it comes to security. We work with our clients to develop a robust security solution that fits their needs and budgets. We offer a variety of server hardening packages ranging from a basic set of server clean-up, update and configuration checks to fully-customized solutions.

Patch Management

The cornerstone of any server security solution is proper patch management. Local exploits can be accessed via insecure web applications. If an attacker can compromise a web application and gain a shell on your system, then any local exploits are now at their disposal. Keeping systems patched is critical, which is why we recommend our subscription support services to anyone that does not have the time to properly maintain patches. As part of any server hardening package, we assure your system is fully patched with the latest updates. If you've an outdated system, we can devise a migration strategy to move your operations to a new, secure environment.

Configuration Hardening

By default, many services are installed on servers. Most server providers seek to deliver maximum functionality rather than just delivering what is needed to accomplish web hosting. rackAID will work with you to minimize the software and services installed on your server. If something is not needed, we recommend you disable or remove the software. We have some predefined guidelines for popular control panels, but if you are running a single site, web cluster or complex application, we can work with you to develop an appropriate solution.

Access Control

Controlling access to your systems is another key component of your security matrix. Rather than relying on auto-blocking and other ad-hoc type tools, we prefer to work with you to carefully build access guidelines and procedures. If your end users do not require shell access, then we can lock down SSH and other tools so that only designed users can access the systems. We use multi-layer approaches by controlling access at the network, server and service levels. Restricting access is a very good tool to eliminate unwanted access. By restricting what services can be accessed by who, you significantly reduce your threat footprint and make it more difficult for attackers to compromise your systems.

Web Applications

In our experience, more than 80% of all attacks occur via insecure web applications. While we do not provide code-level review, we can introduce system-level changes that can mitigate web-based exploits. Through the use of tools like ModSecurity and proper service configuration, we can reduce the chance that a web-based exploit develops into a major attack on your operations.

Security Scanning

rackAID uses Nessus scanner to conduct audits of your system. We conclude most security work with a quick Nessus audit to verify specific settings. Nessus in conjunction with some other tools provide us with a very detailed security and penetration testing environment. We can run detailed security checks against your systems to find exploits before the hackers do. With Nessus, we can quickly spot potential hotspots for trouble and eliminate them. Many PCI compliance testers use Nessus as a base for their scans. If you are having issues passing PCI compliance tests, we can work with you to get your server through the test.

Security Tools

rackAID can install and configure a number of security tools like IPtables, ModSecurity, DoSEvasive and rkhunter. Our services however go beyond installation, we work with you to identify the problem you are trying to resolve, and if possible, resolve it through proper security configuration of existing systems rather than third party add-ons.

Key Services

  • Nessus Security Audits
  • Service Hardening
  • Access Control Systems
  • Firewall Configuraiton
  • Service Isolation (Jailing)
  • System Updates
  • ModSecurity Installation
  • Rootkit Checks
  • Service Removal
  • Software Removal
  • File System Security
  • Password Audits
  • Intrusion Detection Systems (IDS)
  • Network Security
  • Backup Solutions

Monthly Server Management
©2000-2008 rackAID LLC