[Tutorial] Secure your Dedicated Windows Server!

[Jake]

Re: [Howto] Secure your Dedicated Windows Server!

Using it atm, as apache keept crashing because of our website cache :/

Been running stable for 2 days now.

Lighthttpd does, one of the server i maintain gets 700,000 hits a day, and lighthttpd works wonders.

 

[Jake]

Re: [Howto] Secure your Dedicated Windows Server!

Right, alot of servers have been getting DDoS attacked via the RDP port (Remote Desktop Protocol). I'm going to explain how to disable RDP and use a different tool such as Radmin or WinVNC.

Note: Install another remote console application before doing any of this, look for Radmin or WINVNC - They are the best choice.

How do i disable RDP?

First of all you need to login to your Windows Server as an Administrator.


Step 1.

Click start -> Right click my computer -> Click remote

You must be registered to see links

Untick the box that says "Enable Remote Desktop on this computer"

Step 2.

I'd also recommend closing the port on windows firewall, aswell as router side if you have access. The port is 3389


Or if you want to keep RDP - Change the port.

How do i change the port?
In order to add the new listening port:

1) Run REGEDIT on your Server.

2) Export the following key:
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Terminal Server\WinStations\RDP-Tcp

3) Edit the REG file and change the name of the key to something like:
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Terminal Server\WinStations\RDP-Tcp-New

4) In the REG file find
PortNumber
and change it to whatever port you want.

5) Import the REG file back to the registry.

You can now connect to the new port by using the "old" Windows 2000 Terminal Server client. A better option is to use the XP RDP 5.1 or the newer Windows Server 2003 RDP 5.2 client.

To Alter the Port on the client side:

1) Go to the Start menu and click on Run.

2) On the Run menu type MSTSC and click Enter.

Note: To use RDP on computers with operating systems other than Windows XP/2003 you will first need to install the RDP client.

3) In the RDP window, in the Computer box, scroll to the computer name or IP to which you wish to connect.

4) Add a "ort" (without the quotes) where "Port" is the decimal value of the destination port.

5) Press Connect.

Another method of connecting to a different port that default is to run the MSTSC command with the required command line parameters:
/v:ServerName[:Port]

For example: MSTSC /v:192.168.0.150:3390


Hope it helps a few people. I'd also recommend only allowing certain ips to connect to your server via that port. That can be done with 2x SecureRDP (wouldn't recommend it for those with dynamic ips).

 

[gorlian]

Re: [Howto] Secure your Dedicated Windows Server!

Wow, jake, always good stuff u tell, thx

 

[joze]

Re: [Howto] Secure your Dedicated Windows Server!

Jake you are best btw some ppl attack my server via port 80 (http) is there any way to block them?

Thanks a lot.

 

[Jake]

Re: [Howto] Secure your Dedicated Windows Server!

Yes, of course there is. I'll make a guide for setting up Abyss webserver, which also has the function of allowing 1 ip per connection.

 

[Jake]

Re: [Howto] Secure your Dedicated Windows Server!

Installing Abyss Webserver

First of all, you'll need to download Abyss Webserver, located at:

You must be registered to see links

Next you need to install it.

You can install to any directory you want to.

I recommend installing it as a Windows Service as it will automatically start on boot.

You will be prompted to run Abyss Webserver after install, click yes.

Step 2.

Configuration.

You will be prompted that a configuration file has been made, click ok and continue you to the control panel.

Select the language you wish to use, the avaliable languages are English, Arabic and French.

Continue.

Now you are asked to enter the desired login and password you wish to use.

Enter your login details and click next/ok. You will then HAVE to login using them user credidentials.

Now you are at the control panel.

Advanced Configuration.

Click on configure, then go to General.

You will see:

Protocol (Http, HTTPS, HTTPS+HTTP) I suggest using HTTPS as it enabled you to have a little more security behind you.

Port: Default is 80, you can change it to whatever you like.

Directory Path (Click Browse and select the folder you wish to keep your webpages in.)

If you run a dedicated server and have multiple IP's you can chose an ip to bind to, by clicking on Advanced Parameters.

Click ok and save your changes.

Go back to the control panel home,

You must be registered to see links

 

[joze]

Re: [Howto] Secure your Dedicated Windows Server!

thanks a lot thats is exactly what i was looking for =)

*btw 1question, that http server works with MSSQL like apache? ( I using mssql2005 express )

 

[Jake]

Re: [Howto] Secure your Dedicated Windows Server!

Yes, it does, you need to make sure php has the MSSQL module. Should be included with php when you download it.

 

[joze]

Re: [Howto] Secure your Dedicated Windows Server!

WOW it works for all guys which use sql2005 you will probably need this:

You must be registered to see links

Put this in:

C:\windows\system32
PHP\

. . .

And one more question for u Jake, em if i use https (443) then page work normal, BUT when i try to use normal http problem with flooding port is still here.

I use anti hack protection but not successfully, because problem here is guys flooding PORTS not IP, is any way to control PORT flooding too ?

 

[Shortor]

Re: [Howto] Secure your Dedicated Windows Server!

that wont help against evil botnets, but hmm which kid on this forum has a botnet? ;p

 

[Jake]

Re: [Howto] Secure your Dedicated Windows Server!

Change your port, as it'll be a automatic port flood.

 

[joze]

Re: [Howto] Secure your Dedicated Windows Server!

Jake i using domain which dont works if i change port.

 

[Jangan]

Re: [Howto] Secure your Dedicated Windows Server!

wow really nice jake.. couldnt resist when i saw this topic unlocked =) anyways i dont really see the difference between using xampp or aby or any apache system... as long as your website secured, your safe from everything

 

[Jake]

Re: [Howto] Secure your Dedicated Windows Server!

Jake i using domain which dont works if i change port.

Setup port forwarding.

 

[NGXLego]

Re: [Howto] Secure your Dedicated Windows Server!

got a problem with secure rdp. i installed, put in my computer name like your tut, restartet, but i caan still login with my 2nd computer that has a totally different computer name

 

[saareline]

Re: [Howto] Secure your Dedicated Windows Server!

That's what I call topic reviving lol ^^

I'm not sure but.. I'm using TeamViewer for .. well, since the beginning. It's data stream is encrypted and well, seems secure enough for me. Just run is as a service, disable remote access from My Computer and you're good to go.

 

[Jake]

Re: [Howto] Secure your Dedicated Windows Server!

Then i suggest not using Secure RDP and instead set up firewall rules, allowing and denying ip's of your choice. But, really, i won't help you, since you stole NGX files and put them on Unity, then said it was your work, when it was clearly Swarms.

 

[NGXLego]

Re: [Howto] Secure your Dedicated Windows Server!

lawl we need to talk in msn