I have a Centos 6 vps with Nginx and Kloxo-MR installed.
I'm doing lots of research to harden my vps from hacker attacks and ddos attacks.
Right now, I have CSF Firewall installed and I'll install rkhunter. Since chkrootkit is similar to rkhunter, I want only rkhunter installed.
Still, since I've experienced malicious hacker attacks, I'm diligently looking to find the best solutions to prevent another attack.
FYI: The malicious hacker used Wordpress vulnerabilities documented on this forum so I installed Bruteprotect Wordfence and BWS.
For hardening the vps, I've been reading about
https://www.rfxn.com/projects/brute-force-detection/ and OSSEC and OpenVAS. OSSEC is a detection tool and OpenVAS is a vulnerability management tool. I'm leaning toward BFD.
I want to avoid installing redundant security tools and too many tools that may overwhelm the vps or cause incompatibility with Nginx and Kloxo-MR which did occur.
Please share your suggestions on how you secure your vps and what you think about the above security tools.