Hello Community! I am creating a new Server for my company. Therefore, I went through the following two tutorials: http://www.howtoforge.com/extending-perfect-server-debian-squeeze-ispconfig-3 and http://www.howtoforge.com/perfect-server-debian-squeeze-with-bind-and-dovecot-ispconfig-3 for setting up the base system. Now I have a great apache server with e-mail which is only accessible via SSL and FTP which only works via TLS. I also set up Icinga to monitor the server. Of course, aptitude checking for security updates every hour via cronjobs. However, I don't know what I can do to make the server really secure and I guess I'll need additional monitoring tools. What should be the next steps I should follow to make sure that the server won't be cracked ever? Intrusion Detection? More/Better Monitoring? How can I make the daemons more secure?