I have been a long time user of ISPconfig3, thank you for this great tool! I would like to ask advice for setting up a small Vserver with 2GB RAM as a full-featured webserver with ISPConfig3, firewall, email, FTP, phpmyadmin, webmail, etc. and a maximum of features, such as mod security, fail2ban, and if possible spam protection and other useful tools you can suggest. First, about the operating system - I have used Debian for a long time, but I feel the major version changes are too quick for my taste. Would CentOS be a better choice? any drawbacks? Is the following configuration the best for my 2 GB RAM setup? https://www.howtoforge.com/tutorial...l-php-pureftpd-postfix-dovecot-and-ispconfig/ About fail2ban and firewall: in the past, I had the issue that my Vservers didn't have access to IPtables due to the virtualization technique used. Is this still an issue? what should I lookout for to have a functional firewall that fail2ban can use? mod_security: here the issue was that mod_security for debian didn't get updated for whatever reason, so I had to run obsolete versions for ages. is this issue still current, or is it different if I use centOS ? of course, a functional fail2ban with mod_security is a big win for blacklisting attacker IPs. SSL: I haven't looked at the latest ISPconfig version for some time, but I had to work with Plesk. Plesk makes it easy to setup certificates with Let's Encrypt and installation including http to https 301-redirects is practically a 2-click process. How easy is that on ISPconfig? DNS: most domain registrars now offer fully configurable DNS, is it really necessary to run a DNS server such as BIND? (I'm not good at DNS, so this maybe a stupid question) regarding email setup - this topic is often overlooked, but the PHP mail() function and sendmail is not performing well vs. spamfilters. programs need to be able to send emails using a properly configured SMTP server. In the past I used PEAR mail to do that, is there a better to do things now? Still regarding email, is there a comprehensive guide on how to best setup a small server to not trigger spamfilters? I am thinking about servername, reverse DNS, SPF, DKIM, DMARC and any other relevant stuff. still about emails: what tools are there to process the response of other mailservers to mails sent from my server, for example converting mail logs into mysql tables? 2 GB RAM and munin/monit : the Vservers I used in the past have a "processkiller daemon" which kills processes when RAM limits are reached. so I tried to use munin/monit to get critical processes to restart, but quite frequently one of these munin or monit processes got killed itself, thus thwarting my cunning attempt at server stability. are there now better solutions to restart processes that were killed? saslauthd: this horrible little piece of crap has been haunting my email servers for years. it would always end up crashing (bug related, I believe), and suddenly users would not be able to send emails anymore. I believe it's part of postfix and I see that the proposed centOS configuration above also makes use of postfix. Has saslauthd been fixed? If not, are there any workarounds? as you can see, I would like to setup the server in a perfect way, getting all the small details right. I am thankful for any advice. If you know about any guides or checklists focusing on the details of small webserver setup, please let me know. P.S. another question - I run several Vservers, the main reason being the different IP addresses - I don't want that people can relate two websites as being hosted on the same machine. so... as hosters also offer additional IP addresses for Vservers, is there a way to run a larger server with several IP addresses and groups of websites assigned to specific IP addresses with different hostnames? i.e. it is impossible to tell from the outside that the websites on different IPs are running on the same server?