Few Questions about DA

[samanmal]

hey i want to know if i have hosted few sites on my da installed server, one of them got hacked (like wp) is this effect for other sites on the server ? and
let's say the hacked site sent spam mails and server gets black list any option to stop this ?

DA have any option to check logs to monitor the server ?

im going to use da for my clients to host they websites by giving hosting account i need to know these things before doing that thank you.

 

[ericosman]

is this effect for other sites on the server ?

Most of the time, all domains within the same user get infected too. Others users most of the time dont. (never 100% guarantee)

hacked site sent spam mails and server gets black list any option to stop this ?

Remove all infected files, make sure no spam gets sent anymore, and then see where you are listed and how to unlist.

DA have any option to check logs to monitor the server ?

You can see outgoing mails etc.

But the most important is to setup a good security before you get hacked and not having to do a lot afterwards.

 

[Ohm J]

- First question
If you not separate users, second site might got hacked too.
If you want to hosted on same user, just setting "open_basedir" to only access in their public_html site. but it still not safe 100%.


- Second question
DA have option to limit sending email, or even blocked them from sending if they send too many email. It will logs any mail sender. you can monitor all the times.

 

[mhsolutions]

1. If all site in a user, i sure other site will be hacked. If other site in other user, the rate of being hacked is very low. Because the new Directadmin already has a jailshell
2. if server IP in blacklist, let's change IP is the fast solutions. But I think you should set up security well before providing services to customers. For example, block port 25, limit the number of emails sent in 1 day,...

I am a hosting provider, i have used Directadmin with some addon:
- Cloudlinux: support multiphp (4.x to 8.x), if using propack, do not need cloudlinux
- Cpguard / Imunify / ClamAV (free): auto scan and delete malware
- Backup Manager / Jetbackup: Backup all database, code for all user
- Litespeed: Fastest webserver (if you need)

Must set up security well before providing services to customers.

 

[johannes]

You could also lower the allowed sender limit for new clients or new sites, till they are confirmed as save. Furthermore, DA has a feature called blockcracking, which blocks emailaccounts from sending after a certain limit per time is hit, more here https://forum.directadmin.com/threads/customize-blockcracking.67933/ and https://files.directadmin.com/services/blockcracking/README.html