Hello!
A friend recently receibed an attack to his server, and got his files encripted. That really gets me thinking what is the best practice for server security. I would appreciate your tips and comments.
I have been using Windows Server 2012R2, XAMP, MySQL Server
I have the windows firewall configured.
Windows Security always updated
MySQL Ports blocked. Only allowed for internal use
Have daily backups outside my server. Stored in Dropbox
I would really appreciate if you could share your tips in security using AwareIM.
best regards.
General Server Security (Windows Server)
-
- Posts: 201
- Joined: Tue Jul 27, 2010 2:17 am
- Location: Mexico
General Server Security (Windows Server)
LineaMovil // Carlos Castillo
AwareIM Version 8.6
Windows Server 2021
MySQL Database 8.4
MEXICO
AwareIM Version 8.6
Windows Server 2021
MySQL Database 8.4
MEXICO
-
- Posts: 201
- Joined: Tue Jul 27, 2010 2:17 am
- Location: Mexico
Re: General Server Security (Windows Server)
Forgot to mention that I was recommended to only allow connection from specifi IP address, but I dont see this a good option because my IP is not static and will change at some point, an so the other users.
A VPN was an option, but also user may connect from different PCs and locations.
Maybe Im wrong here. Thats why I ask for your advice.
Best regards,
A VPN was an option, but also user may connect from different PCs and locations.
Maybe Im wrong here. Thats why I ask for your advice.
Best regards,
LineaMovil // Carlos Castillo
AwareIM Version 8.6
Windows Server 2021
MySQL Database 8.4
MEXICO
AwareIM Version 8.6
Windows Server 2021
MySQL Database 8.4
MEXICO
Re: General Server Security (Windows Server)
Who suggested that?lineamovil wrote:Forgot to mention that I was recommended to only allow connection from specifi IP address, but I dont see this a good option because my IP is not static and will change at some point, an so the other users.
A VPN was an option, but also user may connect from different PCs and locations.
Maybe Im wrong here. Thats why I ask for your advice.
Best regards,
Maybe you missunderstood. User=developers.
It's nonsense to provide a SaaS app and allow specific users....you don't know their IP's. It's impossible.
Thx,
George
________________________________
Developer Edition
AwareIM: v8.5, build 2824
OS: Windows Server 2012
DB: MySql 5.6.42
George
________________________________
Developer Edition
AwareIM: v8.5, build 2824
OS: Windows Server 2012
DB: MySql 5.6.42
-
- Posts: 201
- Joined: Tue Jul 27, 2010 2:17 am
- Location: Mexico
Re: General Server Security (Windows Server)
Yes, they have only 3 different access points. And usually are the same people. Thats why the suggested that. It is not open to public in general. Usually 3 branch offices.
LineaMovil // Carlos Castillo
AwareIM Version 8.6
Windows Server 2021
MySQL Database 8.4
MEXICO
AwareIM Version 8.6
Windows Server 2021
MySQL Database 8.4
MEXICO
Re: General Server Security (Windows Server)
1. Make sure you always have the latest version update installed
2. There is a RDP vulnerability where some ransomware hackers have succeeded in gaining entry to windows server. make sure you make this change
CredSSP Remote Code Execution Vulnerability
https://portal.msrc.microsoft.com/en-us ... -2018-0886
3. Change the windows server Admin user name to a secure name
3. Install endpoint protection e.g, Symantec Endpoint Protection - small business version
4. offsite- sequential daily backups site - make sure the offsite backups cannot be contaminated by a ransomware jump to the offsite
2. There is a RDP vulnerability where some ransomware hackers have succeeded in gaining entry to windows server. make sure you make this change
CredSSP Remote Code Execution Vulnerability
https://portal.msrc.microsoft.com/en-us ... -2018-0886
3. Change the windows server Admin user name to a secure name
3. Install endpoint protection e.g, Symantec Endpoint Protection - small business version
4. offsite- sequential daily backups site - make sure the offsite backups cannot be contaminated by a ransomware jump to the offsite
-
- Posts: 201
- Joined: Tue Jul 27, 2010 2:17 am
- Location: Mexico
Re: General Server Security (Windows Server)
Thank you! I havent seen that no.2 before.
I will take a deeper look.
great info!
I will take a deeper look.
great info!
LineaMovil // Carlos Castillo
AwareIM Version 8.6
Windows Server 2021
MySQL Database 8.4
MEXICO
AwareIM Version 8.6
Windows Server 2021
MySQL Database 8.4
MEXICO
Re: General Server Security (Windows Server)
i would like to add. use cloudflare services also