Security
Features
Future Hosting provides an integrated approach to securing our
systems with comprehensive protection to assure business continuity,
and a level of flexibility and scalability to meet your individual
business requirements.
McAfee® Total Protection Solutions - Protect your business
from attacks, contain your costs, and minimize the time you
spend on managing security - so you can run and grow your
business. Total Protection Solutions are based on a consolidated
approach that gives small and medium-sized businesses the
immediate benefits of:
• Automatic Protection - Transparently updates itself
daily, without end-user interaction; hassle-free security
minimizes ongoing cost and management.
•
Comprehensive Security in One Solution - Proactively blocks
viruses, spyware, spam, phishing, hacker attacks, identity
thieves, and other threats before they can install and compromise
your systems.
•
Integrated, Centralized Management - Single, web-based console
for policy configuration and management, and remote monitoring
and reporting.
McAfee® Host Intrusion Prevention® - Protect your
assets with multiple proven methods, including a system firewall
and both signature and behavioral analysis.
• Behavioral Protection - Protect against zero-day
attacks without requiring updates. Prevent buffer overflow
attacks, and shield your applications and data to prevent
them from being compromised or used to attack other applications.
•
Signature Protection - Accurately identify and block known
hostile traffic and significantly reduce false positives.
Includes vulnerability shielding, web server and database
server protection, desktop application protection, and USB
removable-media blocking.
•
Desktop Firewall - Proactively defend and control your desktop
and laptops to prevent new threats that anti-virus alone cannot
defend against.
Cisco ASA Firewalls - protect your server from internet threats
via industry leading Cisco firewalls.Future Hosting’s
new Cisco Firewall service utilizes the Cisco Firewall Services
Module (FWSM). The FWSM is a high-speed, integrated firewall
module for Cisco Catalyst 6500 switches that provides the
fastest firewall data rates in the industry: 5-Gbps throughput,
100,000 CPS, and 1M concurrent connections. Up to four FWSMs
can be installed in a single chassis, providing scalability
to 20 Gbps per chassis. Based on Cisco PIX Firewall technology,
the FWSM provides large enterprises and service providers
with unmatched security, reliability, and performance.
The integration of these dedicated firewalls into our Catalyst
6500 infrastructure allows for seamless addition/change/removal
of firewall services “on the fly.” Each dedicated
firewall instance is allocated resources based upon port speed
of the attached server. For reference, the firewall metrics
for each firewall on the Firewall Service Module are similar
to the stand alone Cisco ASA/Pix hardware appliance.
Monthly server bandwidth is recorded at the server switch
port so any traffic blocked by the firewall services module
will not count against your monthly allotments thereby reducing
your costs and the need to pay for malicious traffic blocked.
Server Hardening
All Hybrid, Managed and Unmanaged cPanel/Plesk Virtual Private
Servers include the following
security
setup. The security setup is completed automatically by the
provisioning system during installation of your VPS.
- SIM - (System Integrity Monitor) - 24x7 Internal Monitoring
of services.
- SPRI - (System Priority) - Sets priority to current processes being run on
your server, decreasing load 10-25%.
- PRM - (Process Resource Monitor) - Monitors all resources used by all processes
and if a process is being flooded or causing high load on the server, it is killed.
- BFD - (Brute Force Detection) - Detects brute force connections and automatically
enters the offending IPs into the firewall to be blocked.
- CHKRootKIt – Simple script that detects software used by hackers. It
scans once a day and emails the client if any suspicious scripts are found.
- Firewall Installation - APF (Advanced Policy Firewall) iptables based firewall
and anti-dos rulesets.
|
