Linux Tutorials on the topic “security”

• Chrooting Apache2 With mod_chroot On Fedora 12

  Author: Falko Timme • Tags: apache, fedora, security • Comments: 0

  Chrooting Apache2 With mod_chroot On Fedora 12 This guide explains how to set up mod_chroot with Apache2 on a Fedora 12 system. With mod_chroot, you can run Apache2 in a secure chroot environment and make your server less vulnerable to break-in attempts that try to exploit vulnerabilities in Apache2 or your installed web applications.

  read more... | view as pdf

• How To Harden PHP5 With Suhosin On CentOS 5.4

  Author: Falko Timme • Tags: centos, php, security • Comments: 6

  How To Harden PHP5 With Suhosin On CentOS 5.4 This tutorial shows how to harden PHP5 with Suhosin on a CentOS 5.4 server. From the Suhosin project page: "Suhosin is an advanced protection system for PHP installations that was designed to protect servers and users from known and unknown flaws in PHP applications and the PHP core. Suhosin comes in two independent parts, that can be used separately or in combination. The first part is a small patch against the PHP core, that implements a few low-level protections against bufferoverflows or format string vulnerabilities and the second part is a powerful PHP extension that implements all the other protections."

  read more... | view as pdf

• How To Set Up MySQL Database Replication With SSL Encryption On Ubuntu 9.10

  Author: Falko Timme • Tags: mysql, security, ubuntu • Comments: 3

  How To Set Up MySQL Database Replication With SSL Encryption On Ubuntu 9.10 This tutorial describes how to set up database replication in MySQL using an SSL connection for encryption (to make it impossible for hackers to sniff out passwords and data transferred between the master and slave). MySQL replication allows you to have an exact copy of a database from a master server on another server (slave), and all updates to the database on the master server are immediately replicated to the database on the slave server so that both databases are in sync. This is not a backup policy because an accidentally issued DELETE command will also be carried out on the slave; but replication can help protect against hardware failures though.

  read more... | view as pdf

• How To Add Two-Factor Authentication To Openvpn AS With The WiKID Strong Authentication Server

  Author: nowen • Tags: security • Comments: 0

  How To Add Two-Factor Authentication To Openvpn AS With The WiKID Strong Authentication Server It's been a while since our last tutorial on how to add two-factor authentication to OpenVPN using the WiKID Strong Authentication System. The people at OpenVPN have been very active lately and it seems like a good time to take a look at what they've done. It's still dead simple to configure, but it is mostly done via the new slick web interface.

  read more... | view as pdf

• How To Set Up An SSL Vhost Under Apache2 On Ubuntu 9.10/Debian Lenny

  Author: Falko Timme • Tags: apache, security, debian, ubuntu • Comments: 4

  How To Set Up An SSL Vhost Under Apache2 On Ubuntu 9.10/Debian Lenny This article explains how you can set up an SSL vhost under Apache2 on Ubuntu 9.10 and Debian Lenny so that you can access the vhost over HTTPS (port 443). SSL is short for Secure Sockets Layer and is a cryptographic protocol that provides security for communications over networks by encrypting segments of network connections at the transport layer end-to-end. We use the mod_ssl Apache module here to provide strong cryptography for Apache2 via SSL by the help of the Open Source SSL toolkit OpenSSL.

  read more... | view as pdf

• Setting Up ProFTPd + TLS On Ubuntu 9.10 (Karmic Koala)

  Author: Falko Timme • Tags: ftp, security, ubuntu • Comments: 2

  Setting Up ProFTPd + TLS On Ubuntu 9.10 (Karmic Koala) FTP is a very insecure protocol because all passwords and all data are transferred in clear text. By using TLS, the whole communication can be encrypted, thus making FTP much more secure. This article explains how to set up ProFTPd with TLS on an Ubuntu 9.10 server.

  read more... | view as pdf

• Dansguardian Content Filtering With Transparent Proxy On Ubuntu 9.10 Karmic

  Author: av1611 • Tags: security, ubuntu • Comments: 14

  Dansguardian Content Filtering With Transparent Proxy On Ubuntu 9.10 Karmic This tutorial explains how you can add content filtering to an existing Ubuntu 9.10 system, and how you can prevent users from bypassing the filtering system. We will use Dansguardian content filtering to set up a transparent proxy.

  read more... | view as pdf

• Block Spam, Preventing URL Injection And Block HTTP Attacks With mod_dnsblacklist

  Author: euronymous • Tags: lighttpd, security • Comments: 1

  Block Spam, Preventing URL Injection And Block HTTP Attacks With mod_dnsblacklist mod_dnsblacklist is a Lighttpd module that use DNSBL in order to block spam relay via web forms, preventing URL injection, block http DDoS attacks from bots and generally protecting your web service denying access to a known bad IP address.

  read more... | view as pdf

• Setting Up ProFTPd + TLS On Ubuntu 9.04 (Jaunty Jackalope)

  Author: Falko Timme • Tags: ftp, security, ubuntu • Comments: 0

  Setting Up ProFTPd + TLS On Ubuntu 9.04 (Jaunty Jackalope) FTP is a very insecure protocol because all passwords and all data are transferred in clear text. By using TLS, the whole communication can be encrypted, thus making FTP much more secure. This article explains how to set up ProFTPd with TLS on an Ubuntu 9.04 server.

  read more... | view as pdf

• Linux Security Notes - AIDE File Integrity

  Author: kiranjith • Tags: security, centos • Comments: 3

  Linux Security Notes - AIDE File Integrity AIDE (Advanced Intrusion Detection Enviornment) is a tool to check the file integrity. It is an opensource substitute for TRIPWIRE. It allows to take snapshots of all the major configuration files, binaries as well as libraries stats. And helps to find which binaries have been changed in case of compromisation of the system.

  read more... | view as pdf