I'm learning a lot with my new provider. I've used them before and I like the way they do things. Granted I can change things on my server the way I want, but their security is excellent and I don't plan on changing anything. When I had a VPS with them in the past and ran an IRC network I remember I liked the way they do things.
Just for starters they close SSH access for root. One of the additional things I did on all hosting accounts that have SSH access I set them as jailed. With that set they cannot even su to root. And any user that does have access to su command has to be part of the group allowed to do so. I love the security in these newer servers.
Even if a cracker got into someones hosting account and figured out their user name, and if by some odd chance cracked through in SSH to their account, they still cannot su to root.
Just for starters they close SSH access for root. One of the additional things I did on all hosting accounts that have SSH access I set them as jailed. With that set they cannot even su to root. And any user that does have access to su command has to be part of the group allowed to do so. I love the security in these newer servers.
Even if a cracker got into someones hosting account and figured out their user name, and if by some odd chance cracked through in SSH to their account, they still cannot su to root.