×

Blog

How to secure your Linux VPS Hosting in India

VPS Hosting

Linux VPS hosting is reputed for its flexible platform and decent performance. It is basically the starter pack to gain the leverage of trying new things for your hosting. Linux VPS hosting in India has gained a very good response in a very short period and is increasing its consumption day by day. Linux VPS hosting in India is turning out to be a good platform for startups and even well-established organizations to work on new projects and new upgrades.

Though this Linux VPS hosting could have some real security bugs if not taken care of properly. People in India face these problems of security tensions with Linux VPS which makes it very important to understand these issues and take ideal precautions accordingly. Don’t worry this blog is entirely dedicated to discussing its importance and we hope after reading it you might feel some extra confidence in making further decisions for Linux VPS hosting in India. 

Before you do this, you must be properly aware of your hosting environment and the basic security protection necessary to deal with the same. You should be aware of the risks and the trade-offs associated and function accordingly. This blog does not give you an extremely detailed configuration but a fair idea of what could be the threats and would be done. 

Buy Linux VPS Hosting plans provides Security

The threats and their prevention could be discussed in the following points – 

1.    Unauthorized access – This a common threat many users of Linux VPS hosting India faces. The unwanted traffics could use false methods to get into your system. This can be easily taken care of by enabling and configuring firewalls to block access. Equipping your Linux VPS hosting with a firewall creates a fair distance between you and the internet traffics. You can use firewall solutions like UFW, IPTables, NFTables. You can also use the IDS (Intrusion Detection System) to check this unauthorized access and let you know about ay security breach quickly.

2.    Security breaches while logging in remotely – While using your Linux VPS hosting India, You would want to use it remotely which could have some serious security breaches. To eliminate this threat, you can use protocols like SSH (Secure shell). This SSH gives you end-to-end encryption while using your Linux VPS hosting India remotely. 

3.    Software malfunction – There can be cases of software failing to be secured. This can also be easily managed by employing security dedicated software like database management systems, web servers, etc to ensure well maintenance of your software functioning. 

4.    General security unawareness – People using Linux VPS hosting India complain about the system but sometimes it is themselves who do not take proper care of its management from its initial installation of services. Good security cannot be fulfilled by just employing tools and software, it is complimented through strict diligence, scrutiny, and stringent security management. You can follow these security measures by taking certain steps like – 

Linux VPS Hosting Security

⦁ Being attentive to all the security and other updates.

⦁ Taking proper care while installing new software.

⦁ Being utmost aware of your use and its limits.

⦁ Using SFTP instead of FTP.

⦁ Implementing security instructions and policies. 

⦁ Good knowledge of permission settings.

⦁ A safety check-in regular intervals to detect malware.

The above measures if followed properly could help you fix all the security bugs and run your Linux VPS hosting India without any kind of resistance.

To know more visit Ideastack.

Read our other Blogs:-

Things to Look for in Cheap Shared Web Hosting

Why you need a dedicated server with a growing business

How to choose the best hosting package in 2019?

DEDICATED SERVERS – Business’s tool of growth

Benefits of employing Managed VPS services to your Business

How SAR command work in LINUX VPS

SAR stands for System Activity Report, as its name suggests command is used to collect, report & save CPU, Memory, I/O usage in Unix like operating system. SAR command produces the reports on the fly and can also save the reports in the log files as well.

This article explains how to install and configure the sysstat package (which contains sar utility) and explains how to monitor the following Linux Vps performance statistics using sar.

1 ) Collective CPU usage

2 ) Individual CPU statistics

3) Run queue and load average data

4 ) Swap space used and available

5 ) Report sar data from a specific time

6 ) Individual device I/O activities

7 ) Memory used and available

8 ) Context switch statistics

9 ) Network statistics

10 ) Overall I/O activities of the system

I ) How to install SAR ION LINUX

Install Sysstat Package

First, make sure the latest version of sar is available on your system. Install it using any one of the following methods depending on your distribution.

  • # sudo apt-get install sysstat
  • # yum install sysstat

 

 

Note: Make sure to pass the option –enable-install-cron. This does the following automatically for you. If you don’t configure sysstat with this option, you have to do this ugly job yourself manually.

Creates /etc/rc.d/init.d/sysstat

 create a sysstat

Once installed, verify the sar version using “sar -V”

Finally, make sure sar works. For example, the following gives the system CPU statistics 3 times (with 1 second interval).

sysst

 s1 and s2

Collect the sar statistics using cron job – sa1 and sa2

 

/usr/local/lib/sa/sa1

This runs every 10 minutes and collects sar data for historical reference.

If you want to collect sar statistics every 5 minutes, change */10 to */5 in the above /etc/cron.d/sysstat file.

This writes the data to /var/log/sa/saXX file. XX is the day of the month. saXX file is a binary file. You cannot view its content by opening it in a text editor.

/usr/local/lib/sa/sa2

/usr/local/lib/sa/sa2

This runs close to midnight (at 23:53) to create the daily summary report of the sar data.

/usr/local/lib/sa/sa2

sa2 creates /var/log/sa/sarXX file (Note that this is different than saXX file that is created by sa1). This sarXX file created by sa2 is an ascii file that you can view it in a text editor.

 

 

Linux 2.6.32-431.e16 – Linux kernel version of the system.

01/18/2017 – The date when the sar data was collected.

_x86_64_ – The system architecture

(2 CPU) – Number of CPUs available on this system. On multi core systems, this indicates the total number of cores.

  1. CPU Usage of ALL CPUs (sar -u)

CPU Usage of ALL CPUs (sar -u)

This gives the cumulative real-time CPU usage of all CPUs. “1 5” reports for every 1 seconds a total of 5 times. Most likely you’ll focus on the last field “%idle” to see the cpu load.

  • sar -u Displays CPU usage for the current day that was collected until that point.
  • sar -u 1 5 Displays real time CPU usage every 1 second for 5 times.
  • sar -u ALL Same as “sar -u” but displays additional fields.
  • sar -u ALL 1 5 Same as “sar -u 1 5” but displays additional fields.
  • sar -u -f /var/log/sa/sa10 Displays CPU usage for the 10day of the month from the sa10 file.
  1. CPU Usage of Individual CPU or Core (sar -P)

CPU Usage of Individual CPU or Core

 

If you have 4 Cores on the machine and would like to see what the individual cores are doing, do the following.

  • -P ALL” indicates that it should displays statistics for ALL the individual Cores.
  • In the following example under “CPU” column 0, 1, 2, and 3 indicates the corresponding CPU core numbers.
  1. Memory Free and Used (sar -r)

 3. Memory Free and Used (sar -r)

 

This reports the memory statistics. “1 5” reports for every 1 seconds a total of 5 times. Most likely you’ll focus on “kbmemfree” and “kbmemused” for free and used memory.

Following are few variations:

  • # sar -r
  • # sar -r 1 5
  • # sar -r -f /var/log/sa/sa10
  1. Swap Space Used (sar -S)

 

 

This reports the swap statistics. “1 5” reports for every 1 seconds a total of 5 times. If the “kbswpused” and “%swpused” are at 0, then your system is not swapping.

Following are few variations:

  • #sar -S
  • # sar -S 1 5
  • # sar -S -f /var/log/sa/sa10
  1. Overall I/O Activities (sar -b)

I/O Activities

 

This reports I/O statistics. “1 5” reports for every 1 seconds a total of 5 times.

Following fields are displays in the example below.

tps – Transactions per second (this includes both read and write)

rtps – Read transactions per second

wtps – Write transactions per second

bread/s – Bytes read per second

bwrtn/s – Bytes written per second

Following are a few variations:

  • # sar -b
  • # sar -b 1 5
  • # sar -b -f /var/log/sa/sa10
  1. Individual Block Device I/O Activities (sar -d)

To identify the activities by the individual block devices (i.e a specific mount point, or LUN, or partition), use “sar -d”

s1

 

Following are a few variations:

  • # sar -d
  • # sar -d 1 1
  • # sar -d -f /var/log/sa/sa10
  • # sar -p -d
  1. Report network statistics (sar -n)

This reports various network statistics. For example number of packets received (transmitted) through the network card, statistics of packet failure, etc.,. “1 5” reports for every 1 second a total of 5 times.

  • # sar -n KEYWORD

KEYWORD can be one of the following:

  • # sar -n DEV 1 1
  • DEV – Displays network devices vital statistics for eth0, eth1, etc.,
  • EDEV – Display network device failure statistics
  • NFS – Displays NFS client activities
  • NFSD – Displays NFS server activities
  • SOCK – Displays sockets in use for IPv4
  • IP – Displays IPv4 network traffic
  • EIP – Displays IPv4 network errors
  • ICMP – Displays ICMPv4 network traffic
  • ICMP – Displays ICMPv4 network errors
  • Display context switch per second (sar -w)

This reports the total number of processes created per second, and the total number of context switches per second. “1 5” reports for every 1 second a total of 5 times.

  • # sar -w 1 5
  1. Reports run queue and load average (sar -q)

This reports the run queue size and loads an average of last 1 minute, 5 minutes, and 15 minutes. “1 5” reports for every 1 second a total of 5 times.

  • # sar -q 1 5

By using SAR command we can find out the performance status of the server.

 

Tags: Cheap Linux VPS, Linux VPS hosting India