Hello colleagues, I hope you can help me with your experiences. I have the following detail.
On a couple of occasions I suffered the loss of my BD that were hosted in VPS due to attacks, although dolibarr or any other system may not have 100% security which recommendations I could take to avoid any loss of information or attack to the server.
Although hiring the backup service is the first option, it would not be ideal to go with the fear of having another attack and that the data is on the network, which can be detrimental to the company.
Thanks for your attention.
Hi aitorxs,
What type of attacks did you face ? What ports do you leave opened ? For Dolibarr on a VPS with the software and the database stored on the same system, ports 22 and 443 should be enough. Installing fail2ban on these will then strongly limit unlegitimate access attempts.
Regards,
Marc
Hi Marc, what I could see at the time in the logs was that there was an unsuccessful access attempt to the bd root @ localhost.
Previously I had VPS on other servers with minimal security measures and I had no problems, but the last two were on the same server and what happened to you happened to me; I became suspicious of a server failure.
I understand that port 22 would be for connection via shell and port 443 would be for using https.
Thanks for your recommendations I will proceed to install fail2ban.
Do you know any application or some way that can test some of the security of the server?
Hi aitorxs,
Good question with not so easy answers. On the server, you can can run the lynis audit. Then look at ressources from OWASP, especially ZAP https://www.zaproxy.org/
Don’t forget that that once you have installed fail2ban, you may ban yourself, that’s where testing may become difficult…
Regards,
Marc
1 Like
Hi Marc, thanks for the information. So you should first audit with what you mention and then apply fail2ban to correct the failures, thus preventing audit applications from blocking.
Thanks for everything.
