Gandi Groups


Hosting expert mode: Firewall

You should be logged in to post new messages. Create an account.

I have gandi VPS running in expert mode... is it recommended that I run a
firewall? Is gandi already taking care of this for me? How secure is my VPS
server by default?
On Wed, 22 Feb 2012 07:19:37 +0100
Gabriel Homeier <gmhomeier@gmail.com> wrote:
I have gandi VPS running in expert mode... is it recommended that I run a
firewall? Is gandi already taking care of this for me? How secure is my
VPS
server by default?
Hello,

If you have created a virtual server in expert mode, we deliver a server
with a base system installed. Few application will be installed and
reachable from outside call except for the default SSH server.

If you want to add security on your server once you installed your services
and applications, you will have to install a firewall (direct iptables
script, shorewall, ...) and keep your system up to date using the local
package managment tools. We provide a mirror server which contains all the
package tree of the distributions you can choose from at creation time.
Nicolas Chipaux
GANDI - http://www.gandi.net
On Feb, 22 2012 07:19 CET, Gabriel Homeier wrote:
I have gandi VPS running in expert mode... is it recommended that I run a
firewall? Is gandi already taking care of this for me? How secure is my
VPS
server by default?
From a security perspective:

1) ALWAYS assume the system configuration is suspect when you do a new
install
2) Immediately perform updates to capture the latest patches before
installing anything else
3) Go through EVERYTHING installed on the system before adding extra
services

Gandi.net's VPS is nice in that there are few things installed by default,
which results in a smaller list of things to check (and potentially
uninstall).