[57north-discuss] Ethical Hacking

Hi, I'm 'hardening' up a server, and Tom has done some Pen-Testing for me. If you have time, please attack: informatics.plus.com This is a server I've configured for "noVNC" and "SSH" on obfuscated ports to keep script-kiddies at bay, but easily discoverable by port scan. I'm running "fail2ban" on "sshd" and "apache2" services. I know a bit about defending "SSH", but SFA about defending "Apache". I'd appreciate any help/advice and will buy beer and/or Club Mate for anyone who gets in and leaves me a note how to block the attack in: /root/you_left_the_back_door_open Thanks, Tony. -- Minke Informatics Limited, Registered in Scotland - Company No. SC419028 Registered Office: 3 Donview, Bridge of Alford, AB33 8QJ, Scotland (UK) tel. +44(0)19755 63548 http://minke-informatics.co.uk mob. +44(0)7985 078324 mailto:tony.travis@minke-informatics.co.uk