If you want to setup a fresh secure Webserver then use this list dont ever upload data, files, images on the Webserver who are classified as „secret“ setup daily full backup with Cron view daily the system logs, auth, www, errors … setup a local firewall with less opened ports 80,25 .. setup daily automatic updates by cron reduce the count of users who can login use no logical usernames force long passwords by rules min 15 digits setup a daily load monitor by „uptime“ to log setup a realtime network monitor by „iftop“ use „nmap“ as local portscan to […]