Security

Want to support HowtoForge? Become a subscriber!
 

Creating Encrypted FTP Backups With duplicity And duply On Debian Squeeze

Creating Encrypted FTP Backups With duplicity And duply On Debian Squeeze

When you rent a dedicated server nowadays, almost all providers give you FTP backup space for your server on one of the provider's backup systems. This tutorial shows how you can use duplicity and duply to create encrypted (so that nobody with access to the backup server can read sensitive data in your backups) backups on the provider's remote backup server over FTP. duply is a duplicity wrapper script that allows us to use duplicity without interaction (i.e., you do not have to type in any passwords).

ProFTPd: Enabling/Disabling TLS Based On User Or Group

ProFTPd: Enabling/Disabling TLS Based On User Or Group

FTP is a very insecure protocol because all passwords and all data are transferred in clear text. By using TLS, the whole communication can be encrypted, thus making FTP much more secure. While this is a good thing, not all FTP clients support TLS. This article explains how to enable or disable TLS in ProFTPd based on the FTP user or group.

Setting Up vsftpd + TLS On Debian Squeeze

Setting Up vsftpd + TLS On Debian Squeeze

FTP is a very insecure protocol because all passwords and all data are transferred in clear text. By using TLS, the whole communication can be encrypted, thus making FTP much more secure. This article explains how to set up vsftpd with TLS on a Debian Squeeze server.

Install Anti-Spam Firewall for any email server in 30 minutes

Install Anti-Spam Firewall for any server in 30 minutes

• Designed for Linux and Windows email system administrators, Scrollout F1 is a free anti-spam and  anti-virus email firewall (gateway) for multiple domains and email servers, with DLP for outgoing messages filtering Excel, Word, PDF and image files (archived or hidden). This document describes how to install Scrollout F1 from scratch, on a fresh Ubuntu Server or Debian. 

The installation is easy. Even if you are a newbie in Linux there is not much room for errors.

Estimated time: 30 minutes.
Includes a video tutorial as an alternative to this article.

How To Configure Apache To Use Radius For Two-Factor Authentication On Ubuntu 12.04

How To Configure Apache To Use Radius For Two-Factor Authentication On Ubuntu 12.04

This document describes how to add WiKID two-factor authentication to Apache 2.2.22 using mod_auth_radius on Ubuntu 12.04. It is also recommended that you consider using mutual https authentication for web applications that are worthy of two-factor authentication. Strong mutual authentication means that the targeted website is authenticated to the user in some cryptographically secure manner, thwarting most man-in-the-middle attacks. The use of cryptography is key. While some sites use an image in an attempt to validate a server, it should be noted that any man-in-the-middle could simply replay such an image.

Encrypt Your Data With EncFS (Debian Squeeze/Ubuntu 11.10)

Encrypt Your Data With EncFS (Debian Squeeze/Ubuntu 11.10)

EncFS provides an encrypted filesystem in user-space. It runs without any special permissions and uses the FUSE library and Linux kernel module to provide the filesystem interface. It is a pass-through filesystem, not an encrypted block device, which means it is created on top of an existing filesystem. This tutorial shows how you can use EncFS on Debian Squeeze/Ubuntu 11.10 to encrypt your data.

How To Integrate ClamAV Into PureFTPd For Virus Scanning On Debian Squeeze

How To Integrate ClamAV Into PureFTPd For Virus Scanning On Debian Squeeze

This tutorial explains how you can integrate ClamAV into PureFTPd for virus scanning on a Debian Squeeze system. In the end, whenever a file gets uploaded through PureFTPd, ClamAV will check the file and delete it if it is malware.

AVG Antivirus For Linux/FreeBSD Plus Qmail Mail Server

AVG Antivirus For Linux/FreeBSD Plus Qmail Mail Server

This document describes how to deploy AVG Antivirus for Linux/FreeBSD to the Qmail mail server. It is usable for AVG version 8.5, 10 and 2012.

Remotely Unlock Fully Encrypted Debian Squeeze

Remotely Unlock Fully Encrypted Debian Squeeze

In the past I have written several howtos for remotely unlocking fully encrypted Debian installations. With the advent of Debian Squeeze, the developers have integrated a simple way to do so. Most stuff is provided directly by Debian itself - meaning you don't need 3rd party scripts anymore. However it still involves a few steps which I describe below. Also I provide you with a bash script that will do all the steps automatically.

Configuring DNSSEC On BIND9 (9.7.3) On Debian Squeeze/Ubuntu 11.10

Configuring DNSSEC On BIND9 (9.7.3) On Debian Squeeze/Ubuntu 11.10

This guide explains how you can configure DNSSEC on BIND9 (version 9.7.3 that comes with Debian Squeeze/Ubuntu 11.10) on Debian Squeeze and Ubuntu 11.10. It covers how to enable DNSSEC on authoritative nameservers (master and slave) and on resolving nameservers, creation of keys (KSKs and ZSKs), signing of zones, key rolling with rollerd, zone file checking with donuts, creation of trust anchors, using DLV (DNSSEC look-aside validation), and getting your DS records into the parent's zone.

first page
previous page
...
6
...
next page
last page
XML feed
"Facebook" is a registered trademark of Facebook, Inc. All rights reserved.