Here, at AgeVPS, we make sure that you will only need to concentrate on running your business in a safe environment, leaving the server management on our hands. All our servers include the initial Fully Managed Hosting package.
Firewall Protection & Setup
By default we install and setup on your server APF (Advanced Policy Firewall). All ports are firewalled, excepting the ones used by cPanel/WHM, Apache server, Mail server and SSH server.
Anti-Spam & Anti-Virus Protection & Setup
We setup and configure RBL (Realtime Blackhole List) filters for anti-spam protection. Our configuration uses the best RBL filters available to maximize spam filtering and to reduce the false positives at minimum. For anti-virus protection, we install and configure ClamAV, with daily server checks and signature updates.
Apache Intrusion Prevention
ModSecurity for Apache is installed to prevent web applications for known and unknown exploits. If a new exploit is released, your server can be protected in as little as 15 minutes as we push out ruleset updates.
Server Hardening
All unnecessary services are disabled, and unused packages are removed. SSH is hardened, and kernel operating variables are tweaked to add additional security without impacting any use of the server.
HTTP DOS Prevention
mod_evasive is installed for Apache. This module provides evasive action in the event of an HTTP DoS or DDoS attack. Attacking hosts are blocked temporarily from Apache while legitimate requests are allowed through.
Full List of Managed Services:
| SERVER HARDENING & SECURITY | |
| Advanced Policy Firewall (APF) | Advanced Configurable firewall to block off unused ports and increase system security. |
| Brute Force Detection (BFD) | Detects and blocks brute force attacks. |
| ClamAV Anti-Virus for Email | ClamAV scans incoming and outgoing email for viruses, worms, and trojans. |
| Anti-Spam Filtering | Realtime Blackhole List (RBL) filtering is enabled using the best rulesets. |
| Chkrootkit | Looks for commonly used rootkits, backdoors, and exploits. Also checks for other signs of intrusion. |
| Rootkit Hunter | Looks for commonly used rootkits, backdoors, and exploits. Also checks for other signs of intrusion, and tests system binaries. |
| Mod_Evasive | DoS and brute force prevention for Apache. |
| Mod_Security | HTTP Intrusion Protection System for filtering exploits. Customized ruleset used. |
| Disable Unnecessary Processes | Disables any services which are not needed for normal system operation. |
| Remove Unnecessary Packages | Removes any extraneous packages to remove potential attack and DoS vectors while reducing system footprint. |
| Secure Temporary Directories | Secure /tmp, /var/tmp and other directories to prevent against unauthorized binary upload and execution. |
| Daily Security Audit | Custom security scripts are installed to report on possible security issues. |
| Sysctl Hardening | Modifies kernel operating values to strengthen TCP/IP stack against various attacks including syn floods. |
| INITIAL SYSTEM AUDIT | |
| Operating System update Check | Ensures all Operating system components are functional and up-to-date. |
| WHM Configuration Check | Ensures WHM has been installed and configured. |
| Kernel Update Check | Ensures kernel is at the latest OS-release version. |
| Backup Configuration | Ensures backups have been configured to the backup drive in your server or remote backup space (if applicable). |
