Go4Expert

Go4Expert (http://www.go4expert.com/)
-   Ethical hacking (http://www.go4expert.com/forums/ethical-hacking-forum/)
-   -   Securing our Server (http://www.go4expert.com/forums/securing-our-server-t24745/)

jordan2318 26Jan2011 22:51

Securing our Server
 
Hi

We have a server running several ecommerce sites, the problem is a couple of them get hacked on a regular basis and they are managing to upload a file to the server and then run a SSH on the server.

We are constantly monitoring this, but we really want to try plug the hole. Is there anything that could be recommended to do to find out how they get in.

We have the server locked down in terms of the firewall, ftp access only from certain ip locations etc.

The ecommerce sites use a bespoke based ecommerce platform so we are wondering if there is a loophole in our software.

So if anyone could help with any recommendations that would be excellent.

Thanks

shabbir 27Jan2011 10:48

Re: Securing our Server
 
What is your OS for the server. If it is CentOS refer to http://www.securecentos.com/

jordan2318 27Jan2011 16:50

Re: Securing our Server
 
yeah it is centos, ill have a look at that, is there anything that could test the security of our bespoke ecommerce platform?


All times are GMT +5.5. The time now is 07:59.