I need to systematically secure/harden my LAMP server,
I have taken rudimentary steps; such as changing the port for sshd and using SSL for my site.
But I need to secure it and prevent logins to ssh that are not from a particular IP range.
Furthermore, I want to restrict all access (including www) to a certain geographical region.
I also need to be able to trace any bot network traffic and block such traffic dynamically.
Can you please advice on a simple and exhaustive how-to?