+- 96MB Forum (http://96forum.com)
+-- Forum: General Discussion (http://96forum.com/forumdisplay.php?fid=3)
+--- Forum: Providers' Lounge (http://96forum.com/forumdisplay.php?fid=43)
+--- Thread: How do you secure your SolusVM? (/showthread.php?tid=167)
How do you secure your SolusVM? - zhuanyi - 07-02-2013
As we have seen in the past few weeks, Solus is no longer as safe as we thought it was. Indeed new patches are coming out but I doubt anyone would be able to say for sure there won't be any issue in the future.
In the view of this, what steps have you guys taken to secure your SolusVM and hopefully to reduce the chances of attack? I know Cloudflare is one of the options, since it would hide the IP of the server hosting the SolusVM master. Is there any other option?
RE: How do you secure your SolusVM? - concerto49 - 07-08-2013
I don't think CloudFlare helps all that much. Most of the issues are exploits on the actual code base. What we can do and should do is report all the issues to Soluslabs and make sure they fix it all.
Lock down the admincp to only the known IPs of the admins and do the same for resellers if possible.
Lock down the client API to only the WHMCS IP address.
Either way, we'll just have to wait for Soluslabs to do the security audits.