http://netvouz.com/falko/tag/security?feed=rss falko's bookmarks tagged "security" on Netvouz http://www.howtoforge.com/mysecureshell_sftp_debian_etch This tutorial shows how to install MySecureShell on a Debian Etch system. MySecureShell is an SFTP server that is based on OpenSSH and can be configured in many ways, e.g. it has support for chrooting users into their homedirs or for limiting upload-/download bandwidths. MySecureShell makes SFTP available for users that do not have shell access so that these users do not have to use the insecure FTP protocol anymore. falko Fri, 21 Sep 2007 08:57:44 GMT http://www.howtoforge.com/chroot_ssh_sftp_fedora7 This document describes how to set up a chrooted SSH/SFTP environment on Fedora 7. The chrooted users will be jailed in a specific directory where they cannot break out. They will be able to access their jail via SSH and SFTP. falko Wed, 24 Oct 2007 08:51:16 GMT http://www.howtoforge.com/chroot_ssh_sftp_debian_etch This tutorial describes two ways how to give users chrooted SSH access. With this setup, you can give your users shell access without having to fear that they can see your whole system. Your users will be jailed in a specific directory which they will not be able to break out of. The users will also be able to use SFTP in their chroot jails. falko Sun, 09 Sep 2007 10:01:00 GMT http://www.howtoforge.com/chrooting-apache2-with-mod_chroot-on-fedora-12 This guide explains how to set up mod_chroot with Apache2 on a Fedora 12 system. With mod_chroot, you can run Apache2 in a secure chroot environment and make your server less vulnerable to break-in attempts that try to exploit vulnerabilities in Apache2 or your installed web applications. falko Tue, 06 Apr 2010 12:28:40 GMT http://www.howtoforge.com/samba_ads_security_mode The intent of this article is to show you how to configure your Linux machine and Samba server to participate in a Windows 2003 Active Directory domain as a Member Server using Kerberos authentication. This involves using the security = ADS security mode in Samba. falko Wed, 27 Jun 2007 10:05:23 GMT http://www.howtoforge.com/how_to_avoid_being_blacklisted A blacklist usually refers to a list of email or IP addresses known to send spam emails or some other type of unsolicited messages. Such lists are currently used by mail servers for filtering incoming emails and blocking the ones listed, in order to improve mail security and integrity. The blacklist is also the opposite of what is called a whitelist. falko Fri, 06 Jul 2007 15:00:49 GMT http://www.howtoforge.com/block_spam_at_mta_level_postfix The last few weeks have seen a dramatic increase in spam (once again). Estimates say that spam makes now up for 80 - 90% of all emails, and many mail servers have difficulties in managing the additional load caused by the latest spam, and spam filters such as SpamAssassin do not recognize large parts of that spam as they did before. Fortunately, we can block a big amount of that spam at the MTA level, for example by using blacklists, running tests on the sender and recipient domains, etc. An additional benefit of doing this is that it lowers the load on the mail servers because the (resource-hungry) spamfilters have to look at less emails. falko Wed, 06 Jun 2007 09:59:29 GMT http://www.howtoforge.com/ubuntu_dm_crypt_luks Today security is one of the key aspects in our daily life - sometimes conscious, sometimes unconscious. Security has many aspects and one of them is computer security or security of your or your business' computer data. In this tutorial I will show how to encrypt a whole disk drive using (X)Ubuntu Feisty, dm-crypt, and LUKS. falko Wed, 11 Apr 2007 16:42:12 GMT http://www.howtoforge.com/php_suhosin_centos5.0 This tutorial shows how to harden PHP5 with Suhosin on a CentOS 5.0 server. From the Suhosin project page: "Suhosin is an advanced protection system for PHP installations that was designed to protect servers and users from known and unknown flaws in PHP applications and the PHP core. Suhosin comes in two independent parts, that can be used separately or in combination. The first part is a small patch against the PHP core, that implements a few low-level protections against bufferoverflows or format string vulnerabilities and the second part is a powerful PHP extension that implements all the other protections." falko Sun, 05 Aug 2007 09:42:15 GMT http://www.howtoforge.com/php_suhosin_fedora7 This tutorial shows how to harden PHP5 with Suhosin on a Fedora 7 server. From the Suhosin project page: "Suhosin is an advanced protection system for PHP installations that was designed to protect servers and users from known and unknown flaws in PHP applications and the PHP core. Suhosin comes in two independent parts, that can be used separately or in combination. The first part is a small patch against the PHP core, that implements a few low-level protections against bufferoverflows or format string vulnerabilities and the second part is a powerful PHP extension that implements all the other protections." falko Fri, 27 Jul 2007 10:37:16 GMT