Security

Want to support HowtoForge? Become a subscriber!
 

Chrooting Apache2 With mod_chroot On Debian Squeeze

Chrooting Apache2 With mod_chroot On Debian Squeeze

This guide explains how to set up mod_chroot with Apache2 on a Debian Squeeze system. With mod_chroot, you can run Apache2 in a secure chroot environment and make your server less vulnerable to break-in attempts that try to exploit vulnerabilities in Apache2 or your installed web applications.

nginx: How To Block Exploits, SQL Injections, File Injections, Spam, User Agents, Etc.

nginx: How To Block Exploits, SQL Injections, File Injections, Spam, User Agents, Etc.

This short article explains how you can block the most common exploits, SQL injections, file injections, spam and user agents used by hackers and bandwidth hoggers from your nginx vhosts with some simple configuration directives. This configuration is far from being complete, but it's a good starting point. You will have to watch your logs for attempted break-in attempts and then try to modify/complete the ruleset.

How To Integrate ClamAV Into PureFTPd For Virus Scanning On Ubuntu 12.04

How To Integrate ClamAV Into PureFTPd For Virus Scanning On Ubuntu 12.04

This tutorial explains how you can integrate ClamAV into PureFTPd for virus scanning on an Ubuntu 12.04 system. In the end, whenever a file gets uploaded through PureFTPd, ClamAV will check the file and delete it if it is malware.

Configure An Email Gateway With Scrollout F1 Anti-Spam & DLP

Configure An Email Gateway With Scrollout F1 Anti-Spam & DLP

An email gateway (a.k.a. firewall) is a machine (physical or virtual) installed between Internet and the email server. Its primary role is to protect the email server by filtering incoming messages, via SMTP protocol, from Internet. Secondary, an email gateway may be used as an outgoing gateway in case you want to add some new email features which are not provided by older email servers. For instance, Exchange 2000 or 2003 has no DKIM signing and verification service – a quality improvement for message delivery. This tutorial shows how to configure an email gateway with the Scrollout F1 email gateway.

Basic configuration covered by video tutorial.

Creating Encrypted FTP Backups With duplicity And duply On Debian Squeeze

Creating Encrypted FTP Backups With duplicity And duply On Debian Squeeze

When you rent a dedicated server nowadays, almost all providers give you FTP backup space for your server on one of the provider's backup systems. This tutorial shows how you can use duplicity and duply to create encrypted (so that nobody with access to the backup server can read sensitive data in your backups) backups on the provider's remote backup server over FTP. duply is a duplicity wrapper script that allows us to use duplicity without interaction (i.e., you do not have to type in any passwords).

ProFTPd: Enabling/Disabling TLS Based On User Or Group

ProFTPd: Enabling/Disabling TLS Based On User Or Group

FTP is a very insecure protocol because all passwords and all data are transferred in clear text. By using TLS, the whole communication can be encrypted, thus making FTP much more secure. While this is a good thing, not all FTP clients support TLS. This article explains how to enable or disable TLS in ProFTPd based on the FTP user or group.

Setting Up vsftpd + TLS On Debian Squeeze

Setting Up vsftpd + TLS On Debian Squeeze

FTP is a very insecure protocol because all passwords and all data are transferred in clear text. By using TLS, the whole communication can be encrypted, thus making FTP much more secure. This article explains how to set up vsftpd with TLS on a Debian Squeeze server.

Install Anti-Spam Firewall for any email server in 30 minutes

Install Anti-Spam Firewall for any server in 30 minutes

• Designed for Linux and Windows email system administrators, Scrollout F1 is a free anti-spam and  anti-virus email firewall (gateway) for multiple domains and email servers, with DLP for outgoing messages filtering Excel, Word, PDF and image files (archived or hidden). This document describes how to install Scrollout F1 from scratch, on a fresh Ubuntu Server or Debian. 

The installation is easy. Even if you are a newbie in Linux there is not much room for errors.

Estimated time: 30 minutes.
Includes a video tutorial as an alternative to this article.

How To Configure Apache To Use Radius For Two-Factor Authentication On Ubuntu 12.04

How To Configure Apache To Use Radius For Two-Factor Authentication On Ubuntu 12.04

This document describes how to add WiKID two-factor authentication to Apache 2.2.22 using mod_auth_radius on Ubuntu 12.04. It is also recommended that you consider using mutual https authentication for web applications that are worthy of two-factor authentication. Strong mutual authentication means that the targeted website is authenticated to the user in some cryptographically secure manner, thwarting most man-in-the-middle attacks. The use of cryptography is key. While some sites use an image in an attempt to validate a server, it should be noted that any man-in-the-middle could simply replay such an image.

Encrypt Your Data With EncFS (Debian Squeeze/Ubuntu 11.10)

Encrypt Your Data With EncFS (Debian Squeeze/Ubuntu 11.10)

EncFS provides an encrypted filesystem in user-space. It runs without any special permissions and uses the FUSE library and Linux kernel module to provide the filesystem interface. It is a pass-through filesystem, not an encrypted block device, which means it is created on top of an existing filesystem. This tutorial shows how you can use EncFS on Debian Squeeze/Ubuntu 11.10 to encrypt your data.

first page
previous page
...
6
...
next page
last page
XML feed
"Facebook" is a registered trademark of Facebook, Inc. All rights reserved.