Security

Want to support HowtoForge? Become a subscriber!
 

Adding WiKID Two-Factor Authentication To Google Apps For Your Domain

Adding WiKID Two-Factor Authentication To Google Apps For Your Domain

Google offers two-factor authentication for Google Apps via their own authenticator. Why would you want to use WiKID instead? Well, for starters, since you have outsourced most of your security to Google, the only security you can control is authentication. Wouldn't you like to keep a close eye on the keys to your kingdom? Second, have you ever tried to get support from Google? Third, does Google provide you with the logging required to meet your compliance needs?

Never Forget To Turn Dansguardian Back On After A Cyberspacejaywalk

Never Forget To Turn Dansguardian Back On After A Cyberspacejaywalk

Dansguardian is the leading free keyword blocker on Linux systems and it uses this method known as a weighed keyword score. Now, people who use or administer a web content filter know very well that there are situations when a filter accidentally blocks an acceptable site or even an unreviewed site. The simple solution is often to turn off filtering completely.  Then it is of paramount importance that when this unrestricted cyberspacewalk ends, the administrator must turn Dansguardian back on!! But what if they forget?

Setting Up KeePass For Centos 6

Setting Up KeePass For Centos 6

This mini-howto describes how to set up KeePass on Centos 6. It requires building mono from source and installing the "portable" version of KeePass. Finally there are a few tweaks that need to be done so that it can execute properly.

Encrypt Your Data With EncFS (Ubuntu 13.04)

Encrypt Your Data With EncFS (Ubuntu 13.04)

EncFS provides an encrypted filesystem in user-space. It runs without any special permissions and uses the FUSE library and Linux kernel module to provide the filesystem interface. It is a pass-through filesystem, not an encrypted block device, which means it is created on top of an existing filesystem. This tutorial shows how you can use EncFS on Ubuntu 13.04 to encrypt your data.

Encrypt Your Data With EncFS (Debian Wheezy)

Encrypt Your Data With EncFS (Debian Wheezy)

EncFS provides an encrypted filesystem in user-space. It runs without any special permissions and uses the FUSE library and Linux kernel module to provide the filesystem interface. It is a pass-through filesystem, not an encrypted block device, which means it is created on top of an existing filesystem. This tutorial shows how you can use EncFS on Debian Wheezy to encrypt your data.

Removing Signatures From Various Packages

Removing Signatures From Various Packages

This tutorial shows you how to remove the Debian signature/version info from packages such as Apache, Postfix or SSH. There are various reasons to remove the signature (and therefore hide that you are using Debian/a specific version). The most important one is about security. When a hacker knows the distro you are using, he can search for well-known security issues and start an attack against them. If he doesn't know the distro in use, chances to not find any security holes are much larger.

How To Add WiKID Two-Factor Authentication To OpenVPN Community On Ubuntu 13.04

How To Add WiKID Two-Factor Authentication To OpenVPN Community On Ubuntu 13.04

These instructions describe setting up two-factor authentication with WiKID Strong Authentication, which is a commercial/open source two-factor authentication system and OpenVPN, an SSL-encrypted VPN, on an Ubuntu 13.04 Linux server using the Radius Pluggable Authentication Module. First, we will configure PAM to use Radius, then we will configure OpenVPN to use PAM and one-time passwords, then we will create a network client on the WiKID server for OpenVPN. We won't go into specifics about installing these services, rather we will focus on configuring them to all work together.

Secure ISPConfig 3 And Services With GoDaddy Signed Certificate On CentOS

Secure ISPConfig 3 And Services With GoDaddy Signed Certificate On CentOS

Let's set up a signed certificate from GoDaddy for the ISPConfig control panel, Pure-FTPD, Postfix, Dovecot, phpMyAdmin, and Squirrelmail. Don't forget to replace pluto.example.com with your own FQDN throughout this entire section!

Securing SSH On Ubuntu Precise With WiKID Two-Factor Authentication

Securing SSH On Ubuntu Precise With WiKID Two-Factor Authentication

SSH offers a highly secure channel for remote administration of servers. However, if you face an audit for regulatory or business requirements, such as Visa/Mastercard PCI, you need to be aware of some potential authentication related short-comings that may cause headaches in an audit. In this document we are going to demonstrate how to combine two-factor authentication from WiKID on Ubuntu. This document will also serve as the basis for additional tutorials because many services on Linux use PAM for authentication.

How To Configure Apache To Use Radius For WiKID Two-Factor Authentication On Ubuntu

How To Configure Apache To Use Radius For WiKID Two-Factor Authentication On Ubuntu

This document describes how to add WiKID two-factor authentication to Apache 2.x using mod_auth_radius on Ubuntu 12.04 Precise. It is recommended that you consider using mutual https authentication for web applications that are worthy of two-factor authentication. Strong mutual authentication means that the targeted website is authenticated to the user in some cryptographically secure manner, thwarting most man-in-the-middle attacks. The use of cryptography is key. While some sites use an image in an attempt to validate a server, it should be noted that any man-in-the-middle could simply replay such an image.

first page
previous page
3
...
next page
last page
XML feed
"Facebook" is a registered trademark of Facebook, Inc. All rights reserved.