The tips given below will help you to establish a strong security server whether your server is a high, moderate or low risk servers.
Make sure that all the operating systems that you are using are the latest version and updated regularly. The security patches that you install in your system should also be the latest version and updated on regular basis.
It is also important that you learn how an IP can be blocked and unblocked. Install a firewall in your server and ensure that it is running every time. Monitor your ports and know which ones are open and which ones are not. You should also have strong ingress and egress protection, that is, having protection for both in coming traffic and out-going traffic.
You should have a total control to the access to your server. There are certain things that you should do to ensure that you have a total control to your server. They include disabling, removing or changing all the passwords of default accounts, ensuring that all access to guest accounts are disabled and deleting user accounts that are not active on regular basis. You should also ensure that you use SUNet ID accounts for all your administrative accounts for data center-hosted servers. Make sure that you have a list of everybody that can access the server. Do not allow any open file-sharing. Restrict all remote access to particular IP address which should have strong end to end encryption through VPN.
Other things that you should do to build a strong server security are:
- Reviewing processes and uninstalling and deleting of extra software
- Locking down your software
- Monitoring the performance of your server
- Watching out for abnormal activity
- Having strong physical protection