Security

Want to support HowtoForge? Become a subscriber!
 

ProFTPd: Enabling/Disabling TLS Based On User Or Group

ProFTPd: Enabling/Disabling TLS Based On User Or Group

FTP is a very insecure protocol because all passwords and all data are transferred in clear text. By using TLS, the whole communication can be encrypted, thus making FTP much more secure. While this is a good thing, not all FTP clients support TLS. This article explains how to enable or disable TLS in ProFTPd based on the FTP user or group.

Setting Up vsftpd + TLS On Debian Squeeze

Setting Up vsftpd + TLS On Debian Squeeze

FTP is a very insecure protocol because all passwords and all data are transferred in clear text. By using TLS, the whole communication can be encrypted, thus making FTP much more secure. This article explains how to set up vsftpd with TLS on a Debian Squeeze server.

Virtual Users And Domains With Postfix, Courier, MySQL And SquirrelMail (Fedora 17 x86_64)

Virtual Users And Domains With Postfix, Courier, MySQL And SquirrelMail (Fedora 17 x86_64)

This document describes how to install a Postfix mail server that is based on virtual users and domains, i.e. users and domains that are in a MySQL database. I'll also demonstrate the installation and configuration of Courier, so that Courier can authenticate against the same MySQL database Postfix uses. The resulting Postfix server is capable of SMTP-AUTH and TLS and quota. Passwords are stored in encrypted form in the database. In addition to that, this tutorial covers the installation of Amavisd, SpamAssassin and ClamAV so that emails will be scanned for spam and viruses. I will also show how to install SquirrelMail as a webmail interface so that users can read and send emails and change their passwords.

Install Anti-Spam Firewall for any email server in 30 minutes

Install Anti-Spam Firewall for any server in 30 minutes

• Designed for Linux and Windows email system administrators, Scrollout F1 is a free anti-spam and  anti-virus email firewall (gateway) for multiple domains and email servers, with DLP for outgoing messages filtering Excel, Word, PDF and image files (archived or hidden). This document describes how to install Scrollout F1 from scratch, on a fresh Ubuntu Server or Debian. 

The installation is easy. Even if you are a newbie in Linux there is not much room for errors.

Estimated time: 30 minutes.
Includes a video tutorial as an alternative to this article.

How To Configure Apache To Use Radius For Two-Factor Authentication On Ubuntu 12.04

How To Configure Apache To Use Radius For Two-Factor Authentication On Ubuntu 12.04

This document describes how to add WiKID two-factor authentication to Apache 2.2.22 using mod_auth_radius on Ubuntu 12.04. It is also recommended that you consider using mutual https authentication for web applications that are worthy of two-factor authentication. Strong mutual authentication means that the targeted website is authenticated to the user in some cryptographically secure manner, thwarting most man-in-the-middle attacks. The use of cryptography is key. While some sites use an image in an attempt to validate a server, it should be noted that any man-in-the-middle could simply replay such an image.

Virtual Users And Domains With Postfix, Courier, MySQL And SquirrelMail (Ubuntu 12.04 LTS)

Virtual Users And Domains With Postfix, Courier, MySQL And SquirrelMail (Ubuntu 12.04 LTS)

This document describes how to install a Postfix mail server that is based on virtual users and domains, i.e. users and domains that are in a MySQL database. I'll also demonstrate the installation and configuration of Courier, so that Courier can authenticate against the same MySQL database Postfix uses. The resulting Postfix server is capable of SMTP-AUTH and TLS and quota. Passwords are stored in encrypted form in the database. In addition to that, this tutorial covers the installation of Amavisd, SpamAssassin and ClamAV. I will also show how to install SquirrelMail as a webmail interface.

Encrypt Your Data With EncFS (Debian Squeeze/Ubuntu 11.10)

Encrypt Your Data With EncFS (Debian Squeeze/Ubuntu 11.10)

EncFS provides an encrypted filesystem in user-space. It runs without any special permissions and uses the FUSE library and Linux kernel module to provide the filesystem interface. It is a pass-through filesystem, not an encrypted block device, which means it is created on top of an existing filesystem. This tutorial shows how you can use EncFS on Debian Squeeze/Ubuntu 11.10 to encrypt your data.

How To Integrate ClamAV Into PureFTPd For Virus Scanning On Debian Squeeze

How To Integrate ClamAV Into PureFTPd For Virus Scanning On Debian Squeeze

This tutorial explains how you can integrate ClamAV into PureFTPd for virus scanning on a Debian Squeeze system. In the end, whenever a file gets uploaded through PureFTPd, ClamAV will check the file and delete it if it is malware.

AVG Antivirus For Linux/FreeBSD Plus Qmail Mail Server

AVG Antivirus For Linux/FreeBSD Plus Qmail Mail Server

This document describes how to deploy AVG Antivirus for Linux/FreeBSD to the Qmail mail server. It is usable for AVG version 8.5, 10 and 2012.

Remotely Unlock Fully Encrypted Debian Squeeze

Remotely Unlock Fully Encrypted Debian Squeeze

In the past I have written several howtos for remotely unlocking fully encrypted Debian installations. With the advent of Debian Squeeze, the developers have integrated a simple way to do so. Most stuff is provided directly by Debian itself - meaning you don't need 3rd party scripts anymore. However it still involves a few steps which I describe below. Also I provide you with a bash script that will do all the steps automatically.

first page
previous page
...
8
...
next page
last page