7 security steps for a rackspace cloud server

•

1 like•1,334 views

If you are setting up your rackspace cloud server and need a quick 5 minute reference guide to secure it against attacks, this is for you.

7 SECURITY STEPS
FOR A
RACKSPACE CLOUD
SERVER
Rudhir Sharan
Founder, Secpanel
Tuesday, July 9, 13

YOU BEGIN WITH
Rackspace server comes with:
A root password
Public IP & a Private IP
An OS like CentOS/Ubuntu with IPtables
No security. So, please fend for yourself
Tuesday, July 9, 13

1ST SECURITY STEP
Change the password! (Obvious, isn’t it?)
More so for a Rackspace cloud server.
It comes with a password which is eerily familiar to
the server name!
Get a password which is at least 8 digit long, has at
least one special character, a number of a capital
letter
Avoid your/socially connected names
Tuesday, July 9, 13

2ND SECURITY STEP
Disable direct root login. Helpful link on how to do it
This will mandate users to provide to access
credentials to login as root
You can make changes to your SSH conﬁguration
ﬁle to make the change.
Tuesday, July 9, 13

3RD SECURITY STEP
Install a script or tool which will look for brute force
attacks
All failed login attempts create a ‘noise’ in your logs.
Write a script to detect such attempts and to block a
large number of attempts in a short time
You can try some open source tools like BFD, CSF
or cloud tools like Secpanel
Tuesday, July 9, 13

4TH SECURITY STEP
Close all ports which are not needed
If you use Ubuntu, a great tool called UFW can be
used
Or use IPtables to do it. Some tips are here.
Tuesday, July 9, 13

5TH SECURITY STEP
Install a tool to check for rootkits
Install chkrootkit
and rkhunter
Set up a cron to do a daily scan and email you a
report
Tuesday, July 9, 13

6TH SECURITY STEP
Install a good file monitoring tool or script
This will help you monitor key files on your server
Will alert you if a key file is modified, indicating a
potential system compromise
Can be very useful, if you have multiple users in a
server
Tuesday, July 9, 13

7TH SECURITY STEP
Remove and close unwanted software and services
Any unwanted service is a an unnecessary risk as
you will have to ensure it is updated, patched and is
vulnerability free
Tips on how to do it
Tuesday, July 9, 13

Change the password
Disable direct root login.
Install a brute force protector
Close unwanted ports
Install rootkit checker
Get ﬁle monitoring
Uninstall unwanted software
7 SECURITY STEPS FOR
RACKSPACE SERVER
Tuesday, July 9, 13

6 SECURITY STEPS
FOR A
RACKSPACE SERVER
See more Linux Server Security and System Administration Do It
Yourself(DIY) tips for beginners
Tuesday, July 9, 13

More Related Content

Viewers also liked

SystemD Usage Guide

SystemD Usage Guide

SystemD Usage Guide

VCP Muthukrishna

Rhel6 vs rhel7

How To Reset root Password on CentOS 7

How To Reset root Password on CentOS 7

How To Reset root Password on CentOS 7

VCP Muthukrishna

How to Upgrade Openfire on CentOS 7

How to Upgrade Openfire on CentOS 7

How to Upgrade Openfire on CentOS 7

VCP Muthukrishna

Networking devices

Networking devices

Networking devices

This post contains detailed Mindmap related to Complex subject of Cyber security and address critical components summarized as below: - Cyber Security standards - SOC (Security Operation Center) - Cybersecurity Lifecycle - Hacker Kill Chain - Malware (Types,Protection Mechanism) - Cyber Architecture - CSC (Critical Security Standards) - Incident Management - Network Perimeter best security practices - Final Case Study I hope the Technical post is appreciated and liked by Security Consultants and Subject Matter experts on Cybersecurity.Your criticals Inputs are appreciated.Thank you - Wajahat Iqbal (Wajahat_Iqbal@Yahoo.com)

CYBERSECURITY - Best Practices,Concepts & Case Study (Mindmap)

CYBERSECURITY - Best Practices,Concepts & Case Study (Mindmap)

CYBERSECURITY - Best Practices,Concepts & Case Study (Mindmap)

NIST Cybersecurity Framework - Mindmap

NIST Cybersecurity Framework - Mindmap

NIST Cybersecurity Framework - Mindmap

RHCE FINAL Questions and Answers

RHCE FINAL Questions and Answers

RHCE FINAL Questions and Answers

Radien software

Red hat enterprise linux 7 (rhel 7)

Red hat enterprise linux 7 (rhel 7)

Red hat enterprise linux 7 (rhel 7)

CentOS Linux Server Hardening

CentOS Linux Server Hardening

CentOS Linux Server Hardening

Linux admin interview questions

Linux admin interview questions

Linux admin interview questions

How To Check file exists and Delete PowerShell

How To Check file exists and Delete PowerShell

How To Check file exists and Delete PowerShell

VCP Muthukrishna

Viewers also liked (12)

SystemD Usage Guide

SystemD Usage Guide

SystemD Usage Guide

Rhel6 vs rhel7

How To Reset root Password on CentOS 7

How To Reset root Password on CentOS 7

How To Reset root Password on CentOS 7

How to Upgrade Openfire on CentOS 7

How to Upgrade Openfire on CentOS 7

How to Upgrade Openfire on CentOS 7

Networking devices

Networking devices

Networking devices

CYBERSECURITY - Best Practices,Concepts & Case Study (Mindmap)

CYBERSECURITY - Best Practices,Concepts & Case Study (Mindmap)

CYBERSECURITY - Best Practices,Concepts & Case Study (Mindmap)

NIST Cybersecurity Framework - Mindmap

NIST Cybersecurity Framework - Mindmap

NIST Cybersecurity Framework - Mindmap

RHCE FINAL Questions and Answers

RHCE FINAL Questions and Answers

RHCE FINAL Questions and Answers

Red hat enterprise linux 7 (rhel 7)

Red hat enterprise linux 7 (rhel 7)

Red hat enterprise linux 7 (rhel 7)

CentOS Linux Server Hardening

CentOS Linux Server Hardening

CentOS Linux Server Hardening

Linux admin interview questions

Linux admin interview questions

Linux admin interview questions

How To Check file exists and Delete PowerShell

How To Check file exists and Delete PowerShell

How To Check file exists and Delete PowerShell

Recently uploaded

WebAssembly is Key to Better LLM Performance

WebAssembly is Key to Better LLM Performance

WebAssembly is Key to Better LLM Performance

Introduction to FDO and How It works Applications _ Richard at FIDO Alliance.pdf

Introduction to FDO and How It works Applications _ Richard at FIDO Alliance.pdf

Introduction to FDO and How It works Applications _ Richard at FIDO Alliance.pdf

When you think of a highly secure meeting environment, do you instantly think 'Microsoft Teams'!? Or do you think about some unknown application, troublesome UI and daunting login process...? If you think the latter - let's change that! In this session Femke will show you how using Teams Premium features can create secure, but also good looking meetings! PRETTY. Make sure your company's brand is represented before, during and after the meeting with Customization policies in place. SECURE. Lets utilize Meeting templates and Sensitivity Labels to protect your meeting and data to prevent sensitive information from being leaked. After this session, you will have a clear understanding of the capabilities of Teams Premium features and how to set up the perfect meeting that suits your organizational requirements!

ECS 2024 Teams Premium - Pretty Secure

ECS 2024 Teams Premium - Pretty Secure

ECS 2024 Teams Premium - Pretty Secure

Femke de Vroome

Working together SRE & Platform Engineering

Working together SRE & Platform Engineering

Working together SRE & Platform Engineering

Marcus Vechiato

AI mind or machine power point presentation

AI mind or machine power point presentation

AI mind or machine power point presentation

yogeshlabana357357

Google I/O Extended 2024 Warsaw

Google I/O Extended 2024 Warsaw

Google I/O Extended 2024 Warsaw

This talk focuses on the practical aspects of integrating various telephony systems with Salesforce, drawing on examples from implementations in the Czech scene. It aims to inform attendees about the spectrum of telephony solutions available, from small to large scale, and their compatibility with Salesforce. The presentation will highlight key considerations for selecting a telephony provider that integrates smoothly with Salesforce, including important questions to support the decision-making process. It will also discuss methods for integrating existing telephony systems with Salesforce, aimed at companies contemplating or in the process of adopting this CRM platform. The discussion is designed to provide a straightforward overview of the steps and considerations involved in telephony and Salesforce integration, with an emphasis on functionality, compatibility, and the practical experiences of Czech companies.

Integrating Telephony Systems with Salesforce: Insights and Considerations, B...

Integrating Telephony Systems with Salesforce: Insights and Considerations, B...

Integrating Telephony Systems with Salesforce: Insights and Considerations, B...

Unlock the mysteries of successful Salesforce interviews in this insightful session hosted by Hugo Rosario (Salesforce Customer), a seasoned hiring manager that leads the Salesforce Department of multinational company with over 100 interviews under their belt. Step into the manager's chair and gain exclusive behind-the-scenes insights into what makes a Salesforce consultant stand out during the interview process. From deciphering the unspoken cues to mastering key strategies, we'll explore the intricacies of the interview process and provide practical tips for consultants looking to not only pass interviews but also thrive in their roles. Whether you're a seasoned professional or just starting your Salesforce journey, this session is your backstage pass to the secrets that hiring managers wish you knew.

Behind the Scenes From the Manager's Chair: Decoding the Secrets of Successfu...

Behind the Scenes From the Manager's Chair: Decoding the Secrets of Successfu...

Behind the Scenes From the Manager's Chair: Decoding the Secrets of Successfu...

Microsoft CSP Briefing Pre-Engagement - Questionnaire

Microsoft CSP Briefing Pre-Engagement - Questionnaire

Microsoft CSP Briefing Pre-Engagement - Questionnaire

Simplified FDO Manufacturing Flow with TPMs _ Liam at Infineon.pdf

Simplified FDO Manufacturing Flow with TPMs _ Liam at Infineon.pdf

Simplified FDO Manufacturing Flow with TPMs _ Liam at Infineon.pdf

How Red Hat Uses FDO in Device Lifecycle _ Costin and Vitaliy at Red Hat.pdf

How Red Hat Uses FDO in Device Lifecycle _ Costin and Vitaliy at Red Hat.pdf

How Red Hat Uses FDO in Device Lifecycle _ Costin and Vitaliy at Red Hat.pdf

Webinar Recording: https://www.panagenda.com/webinars/alles-neu-macht-der-mai-wir-durchleuchten-den-verbesserten-notes-eigenschaftendialog/ Haben Sie sich schon einmal über den zu kleinen Eigenschaftendialog in Notes geärgert? Mussten Sie einen Agenten oder eine Aktion erstellen, um schnell mal ein Feld zu ändern? Haben Sie jedes mal endlos nach dem zu vergleichenden Feld gesucht, nachdem Sie ein neues Dokument ausgewählt haben? Wollten Sie das verdammte Ding einfach nur größer machen? Zum Glück gibt es dafür eine Lösung – und sie ist wahrscheinlich bereits installiert! Mit dem kostenlosen panagenda Document Properties (Pro) erhalten Sie den Eigenschaftendialog, den Sie schon immer haben wollten. Größer, anpassbar, und im Volltext durchsuchbar. Sehen Sie mehrere Dokumente gleichzeitig oder vergleichen Sie mit einem Diff-Viewer. Ändern Sie beliebige Felder und haben Sie endlich eine einfache Möglichkeit, Profildokumente für alle Benutzer zu verwalten. Entdecken Sie mit HCL Ambassador Marc Thomas, wie Document Properties Ihre Arbeit vereinfachen und Sie bei der täglichen Verwendung von Domino-Anwendungen unterstützen kann – im Client oder im Designer. Sie werden es nicht bereuen! Für Sie in diesem Webinar - Was Document Properties ist, welche Editionen es gibt und wo es in Notes und Domino Designer zu finden ist - Wie Sie nach einem beliebigen Feld suchen und es bearbeiten, Dokumente vergleichen oder alle Daten per CSV exportieren können - Suchen, Bearbeiten und auch Löschen von Profildokumenten - Welche Konfigurationseinstellungen verfügbar sind, um Funktionen anzupassen - Wie Ihre Endbenutzer davon profitieren - Sehen Sie alles in einer Live-Demo

Easier, Faster, and More Powerful – Alles Neu macht der Mai -Wir durchleuchte...

Easier, Faster, and More Powerful – Alles Neu macht der Mai -Wir durchleuchte...

Easier, Faster, and More Powerful – Alles Neu macht der Mai -Wir durchleuchte...

Ruby has a lot of standard libraries from Ruby 1.8. I promote them democratically with GitHub today via default and bundled gems. So, I'm working to extract them for Ruby 3.4 continuously and future versions. It's long journey for me. After that, some versions may suddenly happen LoadError at require when running bundle exec or bin/rails, for example matrix or net-smtp. We need to learn what's difference default/bundled gems with standard libraries. In this presentation, I will introduce what's the difficult to extract bundled gems from default gems and the details of the functionality that Ruby's require and bundle exec with default/bundled gems. You can learn how handle your issue about standard libraries.

Long journey of Ruby Standard library at RubyKaigi 2024

Long journey of Ruby Standard library at RubyKaigi 2024

Long journey of Ruby Standard library at RubyKaigi 2024

Hiroshi SHIBATA

Webinar Recording: https://www.panagenda.com/webinars/easier-faster-and-more-powerful-notes-document-properties-reimagined/ Have you ever felt frustrated by the small properties dialog in Notes? Had to create an agent or button to quickly change a field? Searched endlessly for the field you wanted to compare each time you selected a new document? Wished you could just make the damned thing bigger? Luckily, there is a solution – and you probably already have it installed! With the free panagenda Document Properties (Pro) you get the properties dialog you always needed. Big, resizable, full-text searchable. View multiple documents at once or compare them with a diff viewer. Modify any field, and finally have an easy way to handle profile documents for all users. Join HCL Lifetime Ambassador Julian Robichaux to discover how Document Properties can simplify your work and assist you daily when using Domino applications – in the client or the designer. You will never look back! Key takeaways from this session - What Document Properties is, which editions there are, and how you can find it in Notes and Domino Designer - How you can search for and edit any field, compare documents, or CSV export all data - How to find, edit, and even delete profile documents - Which configuration settings are available to customize feature

Easier, Faster, and More Powerful – Notes Document Properties Reimagined

Easier, Faster, and More Powerful – Notes Document Properties Reimagined

Easier, Faster, and More Powerful – Notes Document Properties Reimagined

New customer? New industry? New cloud? New team? A lot to handle! How to ensure the success of the project? Start it well! I've created the 3 areas of focus at the beginning of the project that helped me in multiple roles (BA, PO, and Consultant). Learn from real-world experiences and discover how these insights can empower you to deliver unparalleled value to your customers right from the project's start.

Powerful Start- the Key to Project Success, Barbara Laskowska

Powerful Start- the Key to Project Success, Barbara Laskowska

Powerful Start- the Key to Project Success, Barbara Laskowska

This talk offers actionable insights at an executive level for enhancing productivity and refining your portfolio management approach to propel your organization to greater heights. Key Points Covered: 1. Experience Transformation: - The core challenge remains consistent across organizations: converting budget into user-centric designs. - Strategies for deploying design resources effectively in both startups and large enterprises. 2. Strategic Frameworks: - Introduction to the "Ziggurat of Impact" model, detailing layers from basic system interactions to comprehensive customer experiences. - Practical insights on creating frameworks that scale with organizational complexity. 3. Organizational Impact: - Real-world examples of navigating design in large settings, focusing on the synthesis of consumer products and customer experiences. - Emphasis on the importance of designing systems that directly influence customer interactions. 4. Design Execution: - Detailed walkthrough of organizational layers affecting design execution, from touchpoints and customer activities to shared capabilities. - How to ensure design influences both the micro and macro aspects of customer interactions. 5. Measurement and Adaptation: - Techniques for measuring the impact of design decisions and adapting strategies based on data-driven insights. - The critical role of continuous improvement and feedback in refining customer experiences.

Structuring Teams and Portfolios for Success

Structuring Teams and Portfolios for Success

Structuring Teams and Portfolios for Success

This our Twelfth semiannual report on the global Cryptocurrency mining industry. Bitcoin is the world’s largest special purpose supercomputer. And it is globally decentralized. Millions of nodes all run the same open-source code to secure the Bitcoin network, create value, and put new transactions onto the distributed ledger. The latest Top500 list has just been announced at the ISC 2024 conference in Hamburg, and once again the Frontier supercomputer with 1.2 Exaflops peak performance is number one on the list. If assigned to SHA-256 hashing, Frontier would provide only the equivalent hash rate of about three cabinets of the latest high-end Bitcoin mining systems, costing less than 0.1% of Frontier’s cost. Michael Saylor, Chairman of MicroStrategy, has pointed out that GPUs are two orders of magnitude slower than the 5-nanometer technology of custom ASICs used for Bitcoin mining today. He makes the point that the Bitcoin network is unassailable by all of the hyperscale computing resources combined in AWS, Google, and Microsoft Azure cloud data centers today.

TopCryptoSupers 12thReport OrionX May2024

TopCryptoSupers 12thReport OrionX May2024

TopCryptoSupers 12thReport OrionX May2024

Stephen Perrenod

Heather Hedden, Senior Consultant at Enterprise Knowledge, presented “Enterprise Knowledge Graphs: The Importance of Semantics” on May 9, 2024, at the annual Data Summit in Boston. In her presentation, Hedden describes the components of an enterprise knowledge graph and provides further insight into the semantic layer – or knowledge model – component, which includes an ontology and controlled vocabularies, such as taxonomies, for controlled metadata. While data experts tend to focus on the graph database components (RDF triple store or a label property graph), Hedden emphasizes they should not overlook the importance of the semantic layer.

Enterprise Knowledge Graphs - Data Summit 2024

Enterprise Knowledge Graphs - Data Summit 2024

Enterprise Knowledge Graphs - Data Summit 2024

Enterprise Knowledge

Secure Zero Touch enabled Edge compute with Dell NativeEdge via FDO _ Brad at...

Secure Zero Touch enabled Edge compute with Dell NativeEdge via FDO _ Brad at...

Secure Zero Touch enabled Edge compute with Dell NativeEdge via FDO _ Brad at...

Extensible Python: Robustness through Addition - PyCon 2024

Extensible Python: Robustness through Addition - PyCon 2024

Extensible Python: Robustness through Addition - PyCon 2024

Patrick Viafore

Recently uploaded (20)

WebAssembly is Key to Better LLM Performance

WebAssembly is Key to Better LLM Performance

WebAssembly is Key to Better LLM Performance

Introduction to FDO and How It works Applications _ Richard at FIDO Alliance.pdf

Introduction to FDO and How It works Applications _ Richard at FIDO Alliance.pdf

Introduction to FDO and How It works Applications _ Richard at FIDO Alliance.pdf

ECS 2024 Teams Premium - Pretty Secure

ECS 2024 Teams Premium - Pretty Secure

ECS 2024 Teams Premium - Pretty Secure

Working together SRE & Platform Engineering

Working together SRE & Platform Engineering

Working together SRE & Platform Engineering

AI mind or machine power point presentation

AI mind or machine power point presentation

AI mind or machine power point presentation

Google I/O Extended 2024 Warsaw

Google I/O Extended 2024 Warsaw

Google I/O Extended 2024 Warsaw

Integrating Telephony Systems with Salesforce: Insights and Considerations, B...

Integrating Telephony Systems with Salesforce: Insights and Considerations, B...

Integrating Telephony Systems with Salesforce: Insights and Considerations, B...

Behind the Scenes From the Manager's Chair: Decoding the Secrets of Successfu...

Behind the Scenes From the Manager's Chair: Decoding the Secrets of Successfu...

Behind the Scenes From the Manager's Chair: Decoding the Secrets of Successfu...

Microsoft CSP Briefing Pre-Engagement - Questionnaire

Microsoft CSP Briefing Pre-Engagement - Questionnaire

Microsoft CSP Briefing Pre-Engagement - Questionnaire

Simplified FDO Manufacturing Flow with TPMs _ Liam at Infineon.pdf

Simplified FDO Manufacturing Flow with TPMs _ Liam at Infineon.pdf

Simplified FDO Manufacturing Flow with TPMs _ Liam at Infineon.pdf

How Red Hat Uses FDO in Device Lifecycle _ Costin and Vitaliy at Red Hat.pdf

How Red Hat Uses FDO in Device Lifecycle _ Costin and Vitaliy at Red Hat.pdf

How Red Hat Uses FDO in Device Lifecycle _ Costin and Vitaliy at Red Hat.pdf

Easier, Faster, and More Powerful – Alles Neu macht der Mai -Wir durchleuchte...

Easier, Faster, and More Powerful – Alles Neu macht der Mai -Wir durchleuchte...

Easier, Faster, and More Powerful – Alles Neu macht der Mai -Wir durchleuchte...

Long journey of Ruby Standard library at RubyKaigi 2024

Long journey of Ruby Standard library at RubyKaigi 2024

Long journey of Ruby Standard library at RubyKaigi 2024

Easier, Faster, and More Powerful – Notes Document Properties Reimagined

Easier, Faster, and More Powerful – Notes Document Properties Reimagined

Easier, Faster, and More Powerful – Notes Document Properties Reimagined

Powerful Start- the Key to Project Success, Barbara Laskowska

Powerful Start- the Key to Project Success, Barbara Laskowska

Powerful Start- the Key to Project Success, Barbara Laskowska

Structuring Teams and Portfolios for Success

Structuring Teams and Portfolios for Success

Structuring Teams and Portfolios for Success

TopCryptoSupers 12thReport OrionX May2024

TopCryptoSupers 12thReport OrionX May2024

TopCryptoSupers 12thReport OrionX May2024

Enterprise Knowledge Graphs - Data Summit 2024

Enterprise Knowledge Graphs - Data Summit 2024

Enterprise Knowledge Graphs - Data Summit 2024

Secure Zero Touch enabled Edge compute with Dell NativeEdge via FDO _ Brad at...

Secure Zero Touch enabled Edge compute with Dell NativeEdge via FDO _ Brad at...

Secure Zero Touch enabled Edge compute with Dell NativeEdge via FDO _ Brad at...

Extensible Python: Robustness through Addition - PyCon 2024

Extensible Python: Robustness through Addition - PyCon 2024

Extensible Python: Robustness through Addition - PyCon 2024

7 security steps for a rackspace cloud server

1. 7 SECURITY STEPS FOR A RACKSPACE CLOUD SERVER Rudhir Sharan Founder, Secpanel Tuesday, July 9, 13

2. YOU BEGIN WITH Rackspace server comes with: A root password Public IP & a Private IP An OS like CentOS/Ubuntu with IPtables No security. So, please fend for yourself Tuesday, July 9, 13

3. 1ST SECURITY STEP Change the password! (Obvious, isn’t it?) More so for a Rackspace cloud server. It comes with a password which is eerily familiar to the server name! Get a password which is at least 8 digit long, has at least one special character, a number of a capital letter Avoid your/socially connected names Tuesday, July 9, 13

4. 2ND SECURITY STEP Disable direct root login. Helpful link on how to do it This will mandate users to provide to access credentials to login as root You can make changes to your SSH conﬁguration ﬁle to make the change. Tuesday, July 9, 13

5. 3RD SECURITY STEP Install a script or tool which will look for brute force attacks All failed login attempts create a ‘noise’ in your logs. Write a script to detect such attempts and to block a large number of attempts in a short time You can try some open source tools like BFD, CSF or cloud tools like Secpanel Tuesday, July 9, 13

6. 4TH SECURITY STEP Close all ports which are not needed If you use Ubuntu, a great tool called UFW can be used Or use IPtables to do it. Some tips are here. Tuesday, July 9, 13

7. 5TH SECURITY STEP Install a tool to check for rootkits Install chkrootkit and rkhunter Set up a cron to do a daily scan and email you a report Tuesday, July 9, 13

8. 6TH SECURITY STEP Install a good file monitoring tool or script This will help you monitor key files on your server Will alert you if a key file is modified, indicating a potential system compromise Can be very useful, if you have multiple users in a server Tuesday, July 9, 13

9. 7TH SECURITY STEP Remove and close unwanted software and services Any unwanted service is a an unnecessary risk as you will have to ensure it is updated, patched and is vulnerability free Tips on how to do it Tuesday, July 9, 13

10. Change the password Disable direct root login. Install a brute force protector Close unwanted ports Install rootkit checker Get ﬁle monitoring Uninstall unwanted software 7 SECURITY STEPS FOR RACKSPACE SERVER Tuesday, July 9, 13

11. 6 SECURITY STEPS FOR A RACKSPACE SERVER See more Linux Server Security and System Administration Do It Yourself(DIY) tips for beginners Tuesday, July 9, 13