Linux Tutorials on the topic “security”

  • Blocking IP Addresses Of Any Country With iptables

    Author: marchostTags: , Comments: 17

    Blocking IP Addresses Of Any Country With iptables This article explains how you can block IP addresses of any country with the help of iptables.

  • Prevent Phishing with Mutual Authentication

    Author: nowenTags: , , Comments: 1

    Prevent Phishing with Mutual Authentication Phishing is a man-in-the-middle attack. While many people think using time-bound, one-time passwords will solve the problem, they are wrong as attacks will just become automated. What is required is strong mutual authentication - authentication of the host to the user as well as the user to the host. This article demonstrates how to do that using open-source software from WiKID.

  • How to secure WebDAV with SSL and Two-Factor Authentication

    Author: nowenTags: , Comments: 1

    How to secure WebDAV with SSL and Two-Factor Authentication This how-to documents how to configure a WebDAV resource using SSL and  two-factor authentication and how to access that resource from Windows, Linux and Mac.

  • How to secure an SSL VPN with one-time passcodes and mutual authentication

    Author: nowenTags: Comments: 0

    How to secure an SSL VPN with one-time passcodes and mutual authentication SSL-based VPNs were designed to eliminate the need for complex configurations on the user's PC. Unfortunately, that was before the dangers of public WiFi networks and tougher regulatory requirements came into being. Thanks to WiFi, many attacks that were difficult are now quite simple. In particular, a man-in-the-middle attack can intercept SSL-encrypted traffic, rendering SSL-based VPNs useless - even if it's protected by a typical one-time password system. The man-in-the-middle can easily feed the one-time password into the SSL-based VPN within the alloted time.

  • Configuring SSH To Use Freeradius And WiKID For Two-Factor Authentication

    Author: nowenTags: Comments: 2

    Configuring SSH To Use Freeradius And WiKID For Two-Factor Authentication Radius is a great standard. It is powerful enough to accomplish a great deal and simple enough to be easy to handle. Freeradius is an excellent, open source radius server that ships with many Linux variants. It is well documented and well supported. The WiKID Strong Authentication server is a commercial/open source two-factor authentication system that uses public key encryption to transmit PINs and one-time passcodes securely to software tokens running on Blackberries, cell phones, Palms, PocketPCs or, using the J2SE client, Linux, Macs and Windows PCs. You can think of WiKID like certificates, but without the hassles of white lists/black lists and more secure - because the PIN is validated on the server preventing offline brute-force attacks.

  • How to configure Squid for two-factor authentication from WiKID

    Author: nowenTags: , , Comments: 0

    How to configure Squid for two-factor authentication from WiKID In this guide we will show how Squid can be configured to support two-factor authentication from a WiKID server, allowing users to be centrally authenticated, but their requests still distributed for efficiency.

  • How to configure OpenVPN to use WiKID Strong Authentication

    Author: nowenTags: , Comments: 0

    How to configure OpenVPN to use WiKID Strong Authentication The WiKID Strong Authentication System  is a commercial/open source two-factor authentication solution.  This guide demonstrates how to OpenVPN and SSH to use one-time passwords from WiKID.  While both solutions support private key authentication, that may not be sufficient for your requirements; you may need one-time passwords for webmail or extranet access; or centralized authentication management and logging.

  • How To Configure Apache To Use Radius For Two-Factor Authentication On Ubuntu

    apache Author: nowenTags: , , , Comments: 1

    How To Configure Apache To Use Radius For Two-Factor Authentication On Ubuntu This document describes how to add WiKID two-factor authentication to Apache 2.x using mod_auth_radius on Ubuntu 8.1. A previous article described how to add two factor authentication to apache on Fedora. Interestingly, a patch has been created to update mod_auth_radius to work with Apache 2.2+, however, it has only been updated for Debian and Ubuntu. For Fedora and other RedHat flavors of Linux, it is recommended that you use mod_auth_xradius.

  • Setting Up ProFTPd + TLS On Ubuntu 8.10 (Intrepid Ibex)

    apache Author: Falko TimmeTags: , , Comments: 3

    Setting Up ProFTPd + TLS On Ubuntu 8.10 (Intrepid Ibex) FTP is a very insecure protocol because all passwords and all data are transferred in clear text. By using TLS, the whole communication can be encrypted, thus making FTP much more secure. This article explains how to set up ProFTPd with TLS on an Ubuntu 8.10 server.

  • Installing ISP-fw (Firewall) On Linux

    debian Author: htbTags: , Comments: 2

    Installing ISP-fw (Firewall) On Linux ISP-fW is a firewall script that provides port forwarding, packet filtering, stateful packet inspection, port redirection, masquerading, SNAT/ DNAT, TOS, and never the last it generates htb rules for bandwidth management. With ISP-fw, you can turn a PC into a gateway with shaping capabilities.