I'd like to run a security scan on my new VPS to see where the holes might be. Are there any free, online tools to do this? I've got Nessus on another machine, but I'll have to re-address it and connect it to the Internet in order to scan my VPS.

Anybody know of any other options?

You casn ask support or another customer to run nmap on your server to verify the firewall is configured as expected.

charles

Well, I reconfigured my box with Nessus and plugged it into the 'Net, then ran a scan on my VPS.

First pass was pretty good, not a whole of things needing to be fixed. Anonymous FTP was enabled, that was pretty much the big one. Oh, an mailman was installed and running. I ran nmap as well, the ports that I expected to be open were open, and there were no surprises to be found.

Not bad! Thanks, PowerVPS for setting up a relatively secure VPS right out of the box!

Hi,

May I ask what did you eventually do with Anonymous FTP and Mailman please? And also to confirm, do mailing list software such as PHPlist require Mailman?

Thanks in advance.

i don't think there's a problem running mailman...
Except the case that it's a old and vulnerable version... A lot of servers runs mailman...

phplist isn't using mailman... it use phpmailer class if i remember correctly...
I believe mailman is better for ressources use compared to phplist... Any confirmation ?