- Web Server
- Control Panels
- Site Map/RSS Feeds
Manage two factor authentication in your serverfarm with privacyIDEA easily
In this howto I will show, how you can use a privacyIDEA installation to add two factor authentication for many of your servers in your serverfarm.
privacyIDEA is a modular solution for two factor authentication especially with OTP tokens. Due to the modular structure it can be quickly and easily adapted and enhanced. E.g. adding new token types is as simple as writing a new lean python module. You do not need to modify your network for privacyIDEA, it does not write to existing databases or user stores. It only needs read access to your user stores like LDAP, Active Directory, SQL, SCIM-service or flat files. privacyIDEA supports all usual push-button-tokens, OTP cards and smartphone apps.
How To Get LTS updates for Debian 6 (Squeeze)
Debian Squeeze (6.0) is the so named "Old Stable" branch of Debian, the official support for this version ended in april 2014. Squeze is still used on many servers, so a group of Debian developers decided to provide security patches for a longer timespan for this release. These so called LTS updates (LTS = Long Term Support) are not available on the normal Debian update repository and not every user might be aware that he wont get these updates automatically. The following short guide explains how to enable the LTS repository and install the updates.
Two factor authentication with OTP using privacyIDEA and FreeRADIUS on CentOS
In this howto we will show, how you can set up a the two factor authentication and management system privacyIDEA on Cent OS 6.5. privacyIDEA is a system that can manage authentication devices - especially OTP tokens of any kind.
We will set up the system to be served via Apache2, store the token information in a MySQL database and provide authentication via FreeRADIUS server, thus being able to add two factor authentication to all services accessible via RADIUS like SSL VPNs and pam_radius.
Howto add two factor authentication to OTRS with privacyIDEA
In this howto we will show, how easy it is to add two factor authentication with OTP token to OTRS. This is done for the support agents to protect support cases and customer data against attackers and misuse. Nevertheless this can be done for the customers in the very same way.
Configure Linux to use NTLM authentication proxy (ISA Server) using CNTLM
Cntlm is an NTLM / NTLM Session Response / NTLMv2 authenticating HTTP proxy intended to help you break free from the chains of Microsoft proprietary world. You can use a free OS and honor our noble idea, but you can't hide. Once you're behind those cold steel bars of a corporate proxy server requiring NTLM authentication, you're done with. The same even applies to 3rd party Windows applications, which don't support NTLM natively.
Howto run privacyIDEA with Apache2 and MySQL On Ubuntu 14.04 LTS
We use the latest 1.0dev0of privacyIDEA. It is available via the python package index or via github.
Howto enroll and use a Yubikey with privacyIDEA
We use the latest 0.9.1 from privacyIDEA.org.
Implementing SSL Perfect Forward Secrecy in NGINX Web-Server
This HOW-TO describes the process of implementing Perfect Forward Secrecy with the NGINX web-server on Debian and Ubuntu systems. The process can readily be adapted to other GNU/Linux systems.
Securing SSH On Ubuntu With WiKID Two-Factor Authentication
SSH offers a highly secure channel for remote administration of servers. However, if you face an audit for regulatory or business requirements, such as Visa/Mastercard PCI, you need to be aware of some potential authentication related short-comings that may cause headaches in an audit.
How To Find Outdated Wordpress Versions On Your Server To Reduce The Risk Of Being Hacked
Today we want to tell you how to find outdated Wordpress installations on your server. This can be of high risk, especially for shared hosting servers. Being attacked on massively used open source software like Wordpress is only a matter of time, once security exploits get published.
"Facebook" is a registered trademark of Facebook, Inc. All rights reserved.