Security

Want to support HowtoForge? Become a subscriber!
 

Running Vhosts Under Separate UIDs/GIDs With Apache2 mpm-peruser On Debian Etch

Running Vhosts Under Separate UIDs/GIDs With Apache2 mpm-peruser On Debian Etch

This article explains how you can install and configure apache2-mpm-peruser on a Debian Etch server. apache2-mpm-peruser is an MPM (Multi-Processing Module) for the Apache 2 web server, very similar to apache2-mpm-itk, but faster (almost as fast as apache2-mpm-prefork). mpm-peruser allows you to run each of your vhosts under a separate UID and GID - in short, the scripts and configuration files for one vhost no longer have to be readable for all the other vhosts. It is based on metuxmpm, a working implementation of the perchild MPM. The result is a sane and secure web server environment for your users, without kludges like PHP's safe_mode.

Installing ClamAV 0.93.3 From The Sources (+ Sendmail Integration) On CentOS 5.2

Installing ClamAV 0.93.3 From The Sources (+ Sendmail Integration) On CentOS 5.2

This how-to refers to the installation and configuration of Clamav 0.93.3 (from sources) on a Linux server running CentOS 5.2 and sendmail. We assume the fact you’ve installed sendmail from the rpm packages of your distribution.

How To Patch BIND9 Against DNS Cache Poisoning On Debian Etch

How To Patch BIND9 Against DNS Cache Poisoning On Debian Etch

This article explains how you can fix a BIND9 nameserver on a Debian Etch system so that it is not vulnerable anymore to DNS cache poisoning.

BIND 9 Vulnerability And Solution - Patch BIND To Avoid Cache Poisoning (Fedora/CentOS)

BIND 9 Vulnerability And Solution - Patch BIND To Avoid Cache Poisoning (Fedora/CentOS)

I am pretty sure most of you guys have hard about the Vulnerability in BIND. Dan Kaminsky earlier this month announced a massive, multi-vendor issue with DNS that could allow attackers to compromise any name server - clients, too. I thought I would share with you all one of the quickest solutions systems administrators running BIND 9 can use to help solve this vulnerability in case their systems are vulnerable.

A Simple Mailserver On Arch Linux (Postfix + Dovecot)

A Simple Mailserver On Arch Linux (Postfix + Dovecot)

This tutorial describes how to install a complete mailserver using Postfix and Dovecot on an Arch Linux machine or VPS. This specific tutorial is based on my 256MB VPS. Basic linux knowledge is required as I'm not describing every step in detail.

How To Install And Configure Dansguardian With Multi-Group Filtering And Squid With NTLM Auth On Debian Etch

How To Install And Configure Dansguardian With Multi-Group Filtering And Squid With NTLM Auth On Debian Etch

This how-to describes how to install and configure Dansguardian with multi-group filtering, Squid with NTLM auth, ipmasq, and dnsmasq to provide a full internet gateway solution for small to medium sized networks. This how-to requires two NICs in order to preform firewalling and transparent proxying.

HOWTO: Encrypt The System Manually Upon Installation (Ubuntu 8.04)

HOWTO: Encrypt The System Manually Upon Installation (Ubuntu 8.04)

This tutorial describes how you can encrypt an Ubuntu 8.04 (Hardy Heron) system right during the initial installation.

first page
previous page
...
25
...
next page
last page