[CentOS] server is always getting hacked

27 Jun 2009


      WE have a centos 5.3 install, and our server is keep getting hacked.
We see load averages of 500+ and see people from all over the world
logging into our server (used last).
Is there a good place to start to avoid these kinds of things?
For example, here is what I already did.
Open up sshd port only
setup iptables to only accept port 80 and 22
No FTP
No other ports are allowed according to IP Tables.
I am not sure what else measures I can take. Can someone please assist?
TIA

2025

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

2006

2005

2004

[CentOS] server is always getting hacked