Security

Want to support HowtoForge? Become a subscriber!
 

Howto enroll and use a Yubikey with privacyIDEA

Howto enroll and use a Yubikey with privacyIDEA

We use the latest 0.9.1 from privacyIDEA.org.

Implementing SSL Perfect Forward Secrecy in NGINX Web-Server

Implementing SSL Perfect Forward Secrecy in NGINX Web-Server

This HOW-TO describes the process of implementing Perfect Forward Secrecy with the NGINX web-server on Debian and Ubuntu systems. The process can readily be adapted to other GNU/Linux systems.

Securing SSH On Redhat/Centos With WiKID Two-Factor Authentication

Securing SSH On Ubuntu With WiKID Two-Factor Authentication

SSH offers a highly secure channel for remote administration of servers. However, if you face an audit for regulatory or business requirements, such as Visa/Mastercard PCI, you need to be aware of some potential authentication related short-comings that may cause headaches in an audit.

Improve Spam abuse protection in dovecot by restricting access to mail accounts by IP address (e. g. with ISPConfig 3)

Improve Spam abuse protection in dovecot by restricting access to mail accounts by IP address (e. g. with ISPConfig 3)

This howto will show you how to add ip restrictions to single mail accounts when using dovecot with MySQL.

This is especially useful if you need to access a mail account from only one single ip or a few ips or if you want to block specific ip addresses from accessing the mail account (e. g. due to spam abuse).

How To Find Outdated Wordpress Versions On Your Server To Reduce The Risk Of Being Hacked

How To Find Outdated Wordpress Versions On Your Server To Reduce The Risk Of Being Hacked

Today we want to tell you how to find outdated Wordpress installations on your server. This can be of high risk, especially for shared hosting servers. Being attacked on massively used open source software like Wordpress is only a matter of time, once security exploits get published.

How to find outdated joomla versions on your server to reduce the risk of being hacked

Today I want to focus on a topic that can lead to huge problems of hacked accounts, spam mailings etc.: Outdated Joomla installations on your server.

Of course, this is valid for other software, too. The mentioned method should work in a similar way for other software. Since Joomla is widely spread throughout the internet, especially on shared hosting systems CMS (Content Management System), this howto will only cover Joomla so far.

Configuring CAS 3.5.2 On Ubuntu 12.04 For Two-Factor Authentication From WiKID

Configuring CAS 3.5.2  On Ubuntu 12.04 For Two-Factor Authentication From WiKID

Single sign-on is a great technology. Requiring users to login to multiple applications is huge hassle, encourages password reuse and simple passwords. Security needs to focus on usability. If you can make a user's life better while increasing security, everybody wins. In this how-to we will set up the open-source CAS SSO product with the WiKID Strong Authentication Server for two-factor authentication for sessions and mutual https authentication for host authentication.

Adding WiKID Two-Factor Authentication To Google Apps For Your Domain

Adding WiKID Two-Factor Authentication To Google Apps For Your Domain

Google offers two-factor authentication for Google Apps via their own authenticator. Why would you want to use WiKID instead? Well, for starters, since you have outsourced most of your security to Google, the only security you can control is authentication. Wouldn't you like to keep a close eye on the keys to your kingdom? Second, have you ever tried to get support from Google? Third, does Google provide you with the logging required to meet your compliance needs?

Never Forget To Turn Dansguardian Back On After A Cyberspacejaywalk

Never Forget To Turn Dansguardian Back On After A Cyberspacejaywalk

Dansguardian is the leading free keyword blocker on Linux systems and it uses this method known as a weighed keyword score. Now, people who use or administer a web content filter know very well that there are situations when a filter accidentally blocks an acceptable site or even an unreviewed site. The simple solution is often to turn off filtering completely.  Then it is of paramount importance that when this unrestricted cyberspacewalk ends, the administrator must turn Dansguardian back on!! But what if they forget?

Setting Up KeePass For Centos 6

Setting Up KeePass For Centos 6

This mini-howto describes how to set up KeePass on Centos 6. It requires building mono from source and installing the "portable" version of KeePass. Finally there are a few tweaks that need to be done so that it can execute properly.

first page
previous page
3
...
next page
last page