Additional Recommended Steps for New Ubuntu 14.04 Servers

Should it not be sudo chmod 600 /swapfile rather than sudo chown 600 /swapfile ?

Very helpful post, thanks.

This comment has been deleted

If you want to use NTP Syncronization you should enable port 123 in the firewall:

sudo ufw allow 123/tcp

per https://www.digitalocean.com/community/tutorials/how-to-set-up-time-synchronization-on-ubuntu-12-04

if I have changed my default ssh port … and added a rule in ufw for the new port, should i then dissallow access to the default ssh port ?

I recommend also tweaking the swapfile as per this guide from Justin.

I get this, what happened and how to solve it?

sudo dpkg-reconfigure tzdata
perl: warning: Setting locale failed.
perl: warning: Please check that your locale settings:
	LANGUAGE = (unset),
	LC_ALL = (unset),
	LC_CTYPE = "UTF-8",
	LANG = "en_US.UTF-8"
 are supported and installed on your system.
perl: warning: Falling back to the standard locale ("C").
locale: Cannot set LC_CTYPE to default locale: No such file or directory
locale: Cannot set LC_ALL to default locale: No such file or directory
/usr/bin/locale: Cannot set LC_CTYPE to default locale: No such file or directory
/usr/bin/locale: Cannot set LC_ALL to default locale: No such file or directory

Current default time zone: 'Asia/Taipei'
Local time is now: Mon Dec 29 14:21:43 CST 2014.
Universal Time is now: Mon Dec 29 06:21:43 UTC 2014.

Some people might find (I did) imposible to create a swap file if running on a VPS.

Command swapon returns an error: “swapon: swap: swapon failed: Operation not permitted”

If your “swapon” is not responding, this might be the cause.

I am running Ubuntu 14.04 on a VPS provided by OVH, an european-based international ISP. Turns out that some of the virtualized operating systems ISPs use are modified to automatically provide swap memory (in my case, swap = 1/8 RAM). They also prevent root user from creating its own swap memory files.

When I run free -m i can see I had 128MB of swap memory from the very beginning.

 total used free shared buffers cached

Mem: 1024 325 698 2 0 285 -/+ buffers/cache: 39 984 Swap: 128 0 128

This is an obvious shortcoming.

Hello,

I’m thinking about using your great services! However, I wonder if this guide trilogy is almost enough to deploy a normal local store Wordpress website, (just talking about the server mantainment). I would also use Cloudflare to stop spam and ddos attacks.

I mean, apart from updating packages, I’m worried about security, and any other kind of configuration not explained here. Are this firewall settings enough for the most common attacks? Should I take a special consideration on admin pages apart from SSL certificates?

Because, the fact that having my own VPS is great, and I know the Linux basics and I think I can configure my server! but I’m not server admin, so I’m not sure if my website will be a lot more naked than other managed servers (bluehost, etc)

Hi, I get a “Operation not permitted” on swapon, does it important ? how to fix it

me@vps:~$ sudo fallocate -l 4G /swapfile me@vps:~$ sudo chmod 600 /swapfile me@vps:~$ sudo mkswap /swapfile Setting up swapspace version 1, size = 4194300 KiB no label, UUID=468432d3-ea0d-4502-b326-ac101044c914 me@vps:~$ sudo swapon /swapfile swapon: /swapfile: swapon failed: Operation not permitted

Thkx