I hope you are well. I now manage numerous servers running WHM; and I have lately begun integrating config server security and firewall and login failure daemon to improve the security of these systems. While I have some familiarity with server management; I am new to the more advanced configurations and optimizations that CSF and LFD provide. I am seeking out this informed group for advice on best practices and suggestions.
My current setup
WHM Version 11.104.0 (Build 9)
Operating System CentOS 7.9
CSF Version 14.19
LFD Enabled with default settings
I followed the basic setup tutorial for CSF and LFD; but I am aware that there are various other setups that might considerably improve security. My primary goals are to provide optimal protection against brute-force attacks, prohibit unauthorised usage; and preserve server performance while avoiding needless complications.
While LFD already watches for failed login attempts, are there any specific modifications or additional configurations I should look into to improve a brute-force defence, especially for SSH and FTP services?
I have kept the normal channel settings for most services; but I am wondering if it is a good idea to alter the default SSH and FTP ports to non standard ports. What are the potential advantages and disadvantages when applying this in the context of CSF?
CSF offers a variety of tools for adjusting firewall rules. Are there any suggested settings and custom rules I should use to increase overall security; particularly in a hosting setup with several client websites?
I have noticed that LFD can create a lot of email alerts; which can be overwhelming at times. What are the best practices for customising these alerts such that I am aware of serious concerns while not being inundated with less important notifications?
Given that my servers handle several client websites; I am concerned about how CSF and LFD affect server performance. Are there any settings or tweaks that can assist balance security and performance?
Also I explored some topics related to this https://forum.configserver.com/viewtopic.php?psalesforceadmin=33711&hilit=WHM+with+CSF+and+LFD#p33711 but I did not get the sufficient solution of my query so I would really want to get some help from a more experienced person
if you have any general best practices and frequent issues to avoid while using CSF and LFD with WHM; I would appreciate any help you can give.