[sposs]

Hi all, first post and linux noobie.

I have a dedicated server running centos 4 , im using it to learn linux and server management mainly, i have a website up and running on the server.

My hosting company contacted me the other day to tell me my server was being used to run a phishing site.I switched off apache and deleted the phishing files.Im worried about switching on apache again without knowing how to prevent future abuse.

I patch the server regularly doing a YUM update.

However i need to know how i can stop this happening again, what additional
security can i put in place?