A good incident response plan will include a list of guidelines to be followed with regard to implementing new servers and managing current ones (isolating compromised servers, strategically patching and recovering servers). Create guidelines for things such as user management, server management, application installations, security, and procedure documents.
We always do our best to design the most stable and fault-tolerant server implementations we possibly can. We can not prevent every type of incident that could possibly happen but having a good plan in place and following that plan will lessen the likelihood an incident becomes a disaster.
Do not store backups or old versions of software on the production system.
Automate making backups.
|Mastering Ubuntu Server, Jay LaCroix, Fourth Edition|