Posted by suvi under
Networking,
Security
New tutorial added to HowtoMatrix database.
Three ways to securely access remote internal networks and work from home
Remote access to a computer and internal network’s secured resources – all of it in a simple way that’s following well-known security’s best practices? Sounds impossible, but it’s not. How to achieve it explains Bartosz Feński aka fEnIo.
A computer [...]
Posted by suvi under
Security
New tutorial added to HowtoMatrix database.
Using Firewall Object in Firewall Builder
This entry is part 5 of 6 in the series Firewall BuilderThis article continues the series of articles on Fireall Builder, a graphical firewall configuration and management tool that supports many Open Source firewall platforms as well [...]
Posted by suvi under
Security
Wordpress is a very popular blogging service. It was recently hit by a disturbing vulnerability
that allowed attackers to reset the Administrator’s password. While
there is a patch for that vulnerability now, wouldn’t it be best to not
use static passwords? It is actually quite simple to add two-factor authentication to Wordpress.
Read more at HowtoForge
In this article I will show how to prevent brute force attacks with
Fail2ban against your SquirrelMail Web login using the Squirrel Logger
plugin.
Read more at HowtoForge
Posted by suvi under
Security
This article continues the series of articles on Firewall Builder,
a graphical firewall configuration and management tool that
supports many Open Source firewall platforms as well as Cisco IOS
access lists and Cisco ASA (PIX). This article explains key principles of the policy or
[...]
If you are running a webserver you might have faced the problem
already: somewhere on your server is a vulnerable contact form or CMS
system written in PHP that gets abused by spammers to send emails
trough your server. If you have more than a few websites, it is a pain
to detect which of the sites is vulnerable [...]
Posted by suvi under
Security
This article continues the series of articles on Fireall Builder,
a graphical firewall configuration and management tool that
supports many Open Source firewall platforms as well as Cisco IOS
access lists and Cisco ASA (PIX). This article demonstrates how you can build firewall rules
[...]
Posted by suvi under
Security,
Server
OpenSSH is the implementation of the SSH protocol. OpenSSH is recommended for remote login, making backups, remote file transfer via scp or sftp, and much more. SSH is perfect to keep confidentiality and integrity for data exchanged between two networks and systems. However, the main advantage is server authentication, through the use of public key [...]
Posted by suvi under
Networking,
Security,
Tricks
OpenSSH is a great means to protect your connection from being sniffed by others. However, this isn’t always enough. Simply proving that you connected to a server is enough to get incriminated. Unfortunately, SSH doesn’t provide a native way to obfuscate to whom it connects. Instead, a proxy server can be set up. And this [...]
mod_qos gives some fine-grained opportunities to scale the number of
used connections and to defend an attack according to bandwidth limits.
Unfortunately it is only available as source-package and there are many
possible settings, wich might be hard to setup for this special case.
So I provide the way that helped me.
Read more at HowtoForge
Apache is one of the most popular web servers available. And most Apache installations are running on Linux servers. Anyone running Linux will tell you that the operating system (be it on a server or desktop) enjoys a level of security many operating systems do not enjoy. But does that mean you can just install [...]
Posted by suvi under
Security,
Software
Recently I sat down for a minute and thought about how many usernames and passwords I enter on a daily basis. Between my various e-mail accounts (4), social networking sites (3), my personal blog, the various online games I play (3), access to my work web apps (2), computer authentication password, online banking (4), IM [...]
Posted by suvi under
Debian,
Security,
Ubuntu
OpenSSH is a great means to protect your connection from
being sniffed by others. However, this isn’t always enough. Simply
proving that you connected to a server is enough to get incriminated.
Unfortunately, SSH doesn’t provide a native way to obfuscate to whom it connects. Instead, a proxy server can be set up. And this is where TOR [...]
Posted by suvi under
Security,
Ubuntu
This article continues the series of articles on Fireall Builder, a graphical firewall configuration and management tool that supports many Open Source firewall platforms as well as Cisco IOS access lists and Cisco ASA (PIX). Firewall Builder was introduced on this site earlier with articles Getting Started With Firewall Builder,
More information on Firewall [...]
Posted by suvi under
Security,
Software,
Ubuntu
One great advantage of using Linux (Ubuntu) is the fact that you don’t really have to worry about security and hence viruses. However, this does not mean that you should not use an anti-virus on your Ubuntu machine. Especially when you can get a good anit-virus for free. BitDefender for Unices is one such anti-virus [...]