• Plesk Uservoice will be deprecated by October. Moving forward, all product feature requests and improvement suggestions will be managed through our new platform Plesk Productboard.
    To continue sharing your ideas and feedback, please visit features.plesk.com

Securing a Plesk VPS

M

mealto

Guest
Now that we have a Plesk VPS, is there a simple tutorial somewhere that can guide us to securing Plesk and offer tips and tweaks?
 
Well, to be honest your simplest bet would be to installed ASL on it. www.atomicrocketturtle.com. Costs $128 per year.

One of the features of ASL is a more secure kernel, which you can't use with a VPS. But other than that it works fine.

Other things to do include using keys instead of passwords for your SSH logins, and don't allow direct root logins.
Using a good firewall instead of the simplistic one that's standard in Plesk would be a good thing too. APF is a favourite. You need to read the sticky topic about installing APF in a VPS in the Virtuozzo section of this forum though.

You can also ask your VPS supplier to make you /tmp noexec. This doesn't do all that much good but it is better than nothing I suppose.

There's more -- search for posts by lvalics (I think I've spelled that correctly) who has many good suggestions on server security, though many of these don't quite apply to a VPS.
 
You must log in or register to reply here.

Similar threads

J
Question Enable DNS Caching with Plesk Firewall extension in use
Replies
1
Views
1K
Kaspar
K
A
Question How to Secure External Database with SSL?
Replies
6
Views
3K
jopple
J
M
Question Help with managing multiple websites in Plesk along with DNS management
Replies
0
Views
1K
MimiWeb
M
WhiteTiger
Question Error with IPV6, but there is no IPV6.
Replies
3
Views
1K
Sebahat.hadzhi
Sebahat.hadzhi
J
Issue Error 500 Plesk\Exception\Database (DB query failed: SQLSTATE[HY000] [2002] Connection refused)
Replies
5
Views
1K
Raul A.
R
Back
Top