Security

Want to support HowtoForge? Become a subscriber!
 

Using Fail2ban To Block Wrong ISPConfig Logins

Using Fail2ban To Block Wrong ISPConfig Logins

In this tutorial, we'll write an ISPConfig plugin to log failed logins to syslog, filter those entries using rsyslogd and add a fail2ban rule to block malicious users' IPs.

Chrooting Apache2 With mod_chroot On Debian Squeeze

Chrooting Apache2 With mod_chroot On Debian Squeeze

This guide explains how to set up mod_chroot with Apache2 on a Debian Squeeze system. With mod_chroot, you can run Apache2 in a secure chroot environment and make your server less vulnerable to break-in attempts that try to exploit vulnerabilities in Apache2 or your installed web applications.

nginx: How To Block Exploits, SQL Injections, File Injections, Spam, User Agents, Etc.

nginx: How To Block Exploits, SQL Injections, File Injections, Spam, User Agents, Etc.

This short article explains how you can block the most common exploits, SQL injections, file injections, spam and user agents used by hackers and bandwidth hoggers from your nginx vhosts with some simple configuration directives. This configuration is far from being complete, but it's a good starting point. You will have to watch your logs for attempted break-in attempts and then try to modify/complete the ruleset.

How To Integrate ClamAV Into PureFTPd For Virus Scanning On Ubuntu 12.04

How To Integrate ClamAV Into PureFTPd For Virus Scanning On Ubuntu 12.04

This tutorial explains how you can integrate ClamAV into PureFTPd for virus scanning on an Ubuntu 12.04 system. In the end, whenever a file gets uploaded through PureFTPd, ClamAV will check the file and delete it if it is malware.

Configure An Email Gateway With Scrollout F1 Anti-Spam & DLP

Configure An Email Gateway With Scrollout F1 Anti-Spam & DLP

An email gateway (a.k.a. firewall) is a machine (physical or virtual) installed between Internet and the email server. Its primary role is to protect the email server by filtering incoming messages, via SMTP protocol, from Internet. Secondary, an email gateway may be used as an outgoing gateway in case you want to add some new email features which are not provided by older email servers. For instance, Exchange 2000 or 2003 has no DKIM signing and verification service – a quality improvement for message delivery. This tutorial shows how to configure an email gateway with the Scrollout F1 email gateway.

Basic configuration covered by video tutorial.

Creating Encrypted FTP Backups With duplicity And duply On Debian Squeeze

Creating Encrypted FTP Backups With duplicity And duply On Debian Squeeze

When you rent a dedicated server nowadays, almost all providers give you FTP backup space for your server on one of the provider's backup systems. This tutorial shows how you can use duplicity and duply to create encrypted (so that nobody with access to the backup server can read sensitive data in your backups) backups on the provider's remote backup server over FTP. duply is a duplicity wrapper script that allows us to use duplicity without interaction (i.e., you do not have to type in any passwords).

ProFTPd: Enabling/Disabling TLS Based On User Or Group

ProFTPd: Enabling/Disabling TLS Based On User Or Group

FTP is a very insecure protocol because all passwords and all data are transferred in clear text. By using TLS, the whole communication can be encrypted, thus making FTP much more secure. While this is a good thing, not all FTP clients support TLS. This article explains how to enable or disable TLS in ProFTPd based on the FTP user or group.

Setting Up vsftpd + TLS On Debian Squeeze

Setting Up vsftpd + TLS On Debian Squeeze

FTP is a very insecure protocol because all passwords and all data are transferred in clear text. By using TLS, the whole communication can be encrypted, thus making FTP much more secure. This article explains how to set up vsftpd with TLS on a Debian Squeeze server.

Virtual Users And Domains With Postfix, Courier, MySQL And SquirrelMail (Fedora 17 x86_64)

Virtual Users And Domains With Postfix, Courier, MySQL And SquirrelMail (Fedora 17 x86_64)

This document describes how to install a Postfix mail server that is based on virtual users and domains, i.e. users and domains that are in a MySQL database. I'll also demonstrate the installation and configuration of Courier, so that Courier can authenticate against the same MySQL database Postfix uses. The resulting Postfix server is capable of SMTP-AUTH and TLS and quota. Passwords are stored in encrypted form in the database. In addition to that, this tutorial covers the installation of Amavisd, SpamAssassin and ClamAV so that emails will be scanned for spam and viruses. I will also show how to install SquirrelMail as a webmail interface so that users can read and send emails and change their passwords.

Install Anti-Spam Firewall for any email server in 30 minutes

Install Anti-Spam Firewall for any server in 30 minutes

• Designed for Linux and Windows email system administrators, Scrollout F1 is a free anti-spam and  anti-virus email firewall (gateway) for multiple domains and email servers, with DLP for outgoing messages filtering Excel, Word, PDF and image files (archived or hidden). This document describes how to install Scrollout F1 from scratch, on a fresh Ubuntu Server or Debian. 

The installation is easy. Even if you are a newbie in Linux there is not much room for errors.

Estimated time: 30 minutes.
Includes a video tutorial as an alternative to this article.

first page
previous page
5
...
next page
last page