Security

Want to support HowtoForge? Become a subscriber!
 

Chrooted SSH/SFTP On Fedora 7

Chrooted SSH/SFTP On Fedora 7

This document describes how to set up a chrooted SSH/SFTP environment on Fedora 7. The chrooted users will be jailed in a specific directory where they can't break out. They will be able to access their jail via SSH and SFTP.

Preventing Brute Force Attacks With Fail2ban On OpenSUSE 10.3

Preventing Brute Force Attacks With Fail2ban On OpenSUSE 10.3

In this article I will show how to install and configure fail2ban on an OpenSUSE 10.3 system. Fail2ban is a tool that observes login attempts to various services, e.g. SSH, FTP, SMTP, Apache, etc., and if it finds failed login attempts again and again from the same IP address or host, fail2ban stops further login attempts from that IP address/host by blocking it with an iptables firewall rule.

Preventing Brute Force Attacks With BlockHosts On Debian Etch

Preventing Brute Force Attacks With BlockHosts On Debian Etch

In this article I will show how to install and configure BlockHosts on a Debian Etch system. BlockHosts is a Python tool that observes login attempts to various services, e.g. SSH, FTP, etc., and if it finds failed login attempts again and again from the same IP address or host, it stops further login attempts from that IP address/host. By default, BlockHosts supports services that use TCP_WRAPPERS, such as SSH, i.e. services, that use /etc/hosts.allow or /etc/hosts.deny, but it can also block other services using iproute or iptables.

Chrooted SFTP With MySecureShell On Debian Etch

Chrooted SFTP With MySecureShell On Debian Etch

This tutorial shows how to install MySecureShell on a Debian Etch system. MySecureShell is an SFTP server that is based on OpenSSH and can be configured in many ways, e.g. it has support for chrooting users into their homedirs or for limiting upload-/download bandwidths. MySecureShell makes SFTP available for users that do not have shell access so that these users do not have to use the insecure FTP protocol anymore.

Virus Protection With AVG Antivirus On Ubuntu Feisty Fawn

Virus Protection With AVG Antivirus On Ubuntu Feisty Fawn

This tutorial shows how you can install and use AVG Antivirus on an Ubuntu Feisty Fawn desktop. Although there aren't many Linux viruses out there, this can be useful if you often exchange files with Windows users - it can help you to not pass on any Windows viruses (that don't do any harm to Linux systems) to Windows users. AVG Antivirus for Linux is free for private and non-commercial use.

Chrooted SSH/SFTP Tutorial (Debian Etch)

Chrooted SSH/SFTP Tutorial (Debian Etch)

This tutorial describes two ways how to give users chrooted SSH access. With this setup, you can give your users shell access without having to fear that they can see your whole system. Your users will be jailed in a specific directory which they will not be able to break out of. The users will also be able to use SFTP in their chroot jails.

ASSP With Embedded ClamAV Integrated Into Postfix With Virtual Users And Domains

ASSP With Embedded ClamAV Integrated Into Postfix With Virtual Users And Domains

This document describes how to integrate ASSP (Anti-Spam SMTP Proxy) with embedded ClamAV into a mail server based on Postfix featuring virtual users and domains, i.e. users and domains that are in a MySQL database.

DSPAM WebUI with Virtual Users on Debian Sid

DSPAM WebUI with Virtual Users on Debian Sid

This howto is based on DSPAM With Embedded ClamAV Integrated Into Postfix With Virtual Users And Domains. To be able to use the DSPAM WebUI, and to let users take care of their own spam and train DSPAM themselves, you will have to install dspam-webfrontend.

DSPAM With Embedded ClamAV Integrated Into Postfix With Virtual Users And Domains

DSPAM With Embedded ClamAV Integrated Into Postfix With Virtual Users And Domains

This document describes how to integrate DSPAM with embedded ClamAV into a mail server based on Postfix featuring virtual users and domains, i.e. users and domains that are in a MySQL database. It rests upon parts of the howto Virtual Users And Domains With Postfix, Courier And MySQL (Debian Etch) from Falko Timme.

How To Harden PHP5 With Suhosin On OpenSuSE 10.2

How To Harden PHP5 With Suhosin On OpenSuSE 10.2

This tutorial shows how to harden PHP5 with Suhosin on an OpenSuSE 10.2 server. From the Suhosin project page: "Suhosin is an advanced protection system for PHP installations that was designed to protect servers and users from known and unknown flaws in PHP applications and the PHP core. Suhosin comes in two independent parts, that can be used separately or in combination. The first part is a small patch against the PHP core, that implements a few low-level protections against buffer overflows or format string vulnerabilities and the second part is a powerful PHP extension that implements all the other protections."

first page
previous page
...
34
...
next page
last page