How can I improve the security of my server?
Please understand that we provide unmanaged access to our servers. Once root access to the server is granted, further configuration and security measures are your responsibility. Here are some recommendations we suggest you make to help improve the security of your server:
- Install and run antivirus software – For example, ClamAV.
- Set up a firewall – When setting up a firewall, ensure that the firewall is not blocking requests on the new port.
- Limit open ports to only those needed for your services – If you experience issues after changing a port, you can still access your server using VNC to revert or adjust your settings. For additional instructions on using VNC with your VPS, refer to our tutorial here.
- Install anti-brute-force software – Recommended tools include cPHulk and Fail2ban, which help protect against repeated unauthorized login attempts.
- Use secure passwords for all logins on the server – Avoid common or easily guessed passwords and consider using a password manager to generate and store complex passwords.
- Be cautious with email and web activity – Do not click on suspicious links or download unknown attachments. Avoid visiting untrusted websites.
- Keep software up-to-date –
- For WordPress users: outdated versions are a common attack point. We strongly recommend using Wordfence for enhanced WordPress security.
- For other platforms: explore available security add-ons or plugins tailored to your software.
- Change the default SSH port and enable SSH Key Authentication – You can find a guide on how to do this here.
- Enable two-factor authentication (2FA) with cPanel/WHM – With cPanel/WHM, 2FA adds an additional layer of login protection. Make sure it’s activated for all admin-level users.