Security

Want to support HowtoForge? Become a subscriber!
 

Blocking Facebook Web Trackers At The Firewall For Extra Privacy

Blocking Facebook Web Trackers At The Firewall For Extra Privacy

If you've spent any time examining the network traffic to and from your web browser, you will notice the prolific number of trackers embedded in the pages. There are some add-ons to the web browsers that aid in privacy, but it is simple enough to block the rogue sites at the firewall.

How To Secure Apache2 With LinOTP

How To Secure Apache2 With LinOTP

This Howto describes the way to set up two factor authentication with one time passwords for Apache2. We assume, that you have already set up your LinOTP server. You can download Debian and Ubuntu packages or you can install the system using the Python Package Index. It provides a good quick start to get the service up and running for demo purposes (check for the latest version).

How To Set Up OpenVPN To Authenticate With LinOTP

How To Set Up OpenVPN To Authenticate With LinOTP

This howto will show you the way to set up OpenVPN to authenticate users against the LinOTP authentication backend. Thus you can bring up your VPN using two factor authentication with different kind of OTP tokens. The interesting part is, that we will also use client certificates, so that the VPN only gets established if the machine has the right client certificate and the user has the right OTP token.

How To Set Up An IPS (Intrusion Prevention System) On Fedora 17

How To Set Up An IPS (Intrusion Prevention System) On Fedora 17

Vuurmuur is a linux firewall manager. It takes a human readable rule syntax and turns it into the proper iptables commands. It supports logviewing, traffic shaping, connection killing and a lot of other features. Suricata is a relatively new network IDS/IPS. It's multithreaded for performance, supports IDS and IPS modes, can extract files from HTTP streams and has a lot of other features. Fedora 17 includes both Vuurmuur and Suricata in its repository. In this howto I'll describe how to get a functional IPS using only Fedora packages.

Chrooting Apache2 With mod_chroot On OpenSUSE 12.2

Chrooting Apache2 With mod_chroot On OpenSUSE 12.2

This guide explains how to set up mod_chroot with Apache2 on an OpenSUSE 12.2 system. With mod_chroot, you can run Apache2 in a secure chroot environment and make your server less vulnerable to break-in attempts that try to exploit vulnerabilities in Apache2 or your installed web applications.

Adding Two-Factor Authentication To OpenVPN AS With The WiKID Strong Authentication Server

Adding Two-Factor Authentication To OpenVPN AS With The WiKID Strong Authentication Server

Pairing WiKID with two-factor authentication and OpenVPN AS is a great cost-effective solution to secure your network for minimal expense. I downloaded the RPM Version of OpenVPN Access Server and dropped the RPM onto a Centos VM. I had previously configured a WiKID two-factor authentication server using our Enterprise ISO. The OpenVPN server configures itself on install and directs you to change the password for the openvpn user and directs you to the Openvpn AS web interface.

Managing Multiple MySQL Servers From One phpMyAdmin Installation (Using SSL Encryption)

Managing Multiple MySQL Servers From One phpMyAdmin Installation (Using SSL Encryption)

This tutorial explains how you can manage multiple MySQL servers from one phpMyAdmin installation. For security reasons, communication between phpMyAdmin and any remote MySQL server is using SSL encryption (this is not necessary for a local MySQL server since communication between phpMyAdmin and MySQL is not leaving the server). phpMyAdmin is a free software tool written in PHP, intended to handle the administration of MySQL over the World Wide Web. phpMyAdmin supports a wide range of operations with MySQL.

Using Fail2ban To Block Wrong ISPConfig Logins

Using Fail2ban To Block Wrong ISPConfig Logins

In this tutorial, we'll write an ISPConfig plugin to log failed logins to syslog, filter those entries using rsyslogd and add a fail2ban rule to block malicious users' IPs.

Chrooting Apache2 With mod_chroot On Debian Squeeze

Chrooting Apache2 With mod_chroot On Debian Squeeze

This guide explains how to set up mod_chroot with Apache2 on a Debian Squeeze system. With mod_chroot, you can run Apache2 in a secure chroot environment and make your server less vulnerable to break-in attempts that try to exploit vulnerabilities in Apache2 or your installed web applications.

nginx: How To Block Exploits, SQL Injections, File Injections, Spam, User Agents, Etc.

nginx: How To Block Exploits, SQL Injections, File Injections, Spam, User Agents, Etc.

This short article explains how you can block the most common exploits, SQL injections, file injections, spam and user agents used by hackers and bandwidth hoggers from your nginx vhosts with some simple configuration directives. This configuration is far from being complete, but it's a good starting point. You will have to watch your logs for attempted break-in attempts and then try to modify/complete the ruleset.

first page
previous page
5
...
next page
last page
XML feed
"Facebook" is a registered trademark of Facebook, Inc. All rights reserved.