Linux Tutorials on the topic “security”

  • How To Harden PHP5 With Suhosin On Fedora 7

    Author: Falko TimmeTags: , , Comments: 0

    How To Harden PHP5 With Suhosin On Fedora 7 This tutorial shows how to harden PHP5 with Suhosin on a Fedora 7 server. From the Suhosin project page: "Suhosin is an advanced protection system for PHP installations that was designed to protect servers and users from known and unknown flaws in PHP applications and the PHP core. Suhosin comes in two independent parts, that can be used separately or in combination. The first part is a small patch against the PHP core, that implements a few low-level protections against bufferoverflows or format string vulnerabilities and the second part is a powerful PHP extension that implements all the other protections."

  • How To Harden PHP5 With Suhosin On Mandriva 2007 Spring

    Author: Falko TimmeTags: , , Comments: 0

    How To Harden PHP5 With Suhosin On Mandriva 2007 Spring This tutorial shows how to harden PHP5 with Suhosin on a Mandriva 2007 Spring server. From the Suhosin project page: "Suhosin is an advanced protection system for PHP installations that was designed to protect servers and users from known and unknown flaws in PHP applications and the PHP core. Suhosin comes in two independent parts, that can be used separately or in combination. The first part is a small patch against the PHP core, that implements a few low-level protections against buffer overflows or format string vulnerabilities and the second part is a powerful PHP extension that implements all the other protections."

  • How to Avoid Being Blacklisted

    Author: alinapTags: , , Comments: 2

    How to Avoid Being Blacklisted A blacklist usually refers to a list of e-mail or IP addresses known to send spam e-mails or some other type of unsolicited messages. Such lists are currently used by mail servers for filtering incoming e-mails and blocking the ones listed, in order to improve mail security and integrity. The blacklist is also the opposite of what is called a whitelist.

  • TrueCrypt Tutorial: Truly Portable Data Encryption

    Author: lipiecTags: Comments: 9

    TrueCrypt Tutorial: Truly Portable Data Encryption TrueCrypt is a free software that encrypts data “on-the-fly”. Right now the newest version released is version 4.3. You can create an encrypted hard drive, a separate partition or a directory with TrueCrypt. It doesn’t simply encrypt the content of files, but their names and the names of the directories they are in as well. Moreover there is no way to check the size of the encrypted directory/HDD/partition. TrueCrypt is available for Windows and Linux.

  • Installing ModSecurity2 On Debian Etch

    Author: Falko TimmeTags: , , Comments: 15

    Installing ModSecurity2 On Debian Etch This article shows how to install and configure ModSecurity (version 2) for use with Apache2 on a Debian Etch system. ModSecurity is an Apache module that provides intrusion detection and prevention for web applications. It aims at shielding web applications from known and unknown attacks, such as SQL injection attacks, cross-site scripting, path traversal attacks, etc.

  • Introduction to Antispam Practices

    Author: alinapTags: , Comments: 1

    Introduction to Antispam Practices Competitive Antispam products, proper legislation, efforts towards a better user education, it has all been tried in order to stop spam. However, unsolicited emails keep consuming the space and time of all email users. Moreover, spam messages can be the cause of serious virus and spyware outbreaks, while others “phish” for sensitive information like bank accounts and passwords.

  • Introducing Remo - An Easy Way to Secure an Insecure Online Application with ModSecurity

    Author: dune73Tags: , Comments: 2

    Introducing Remo - An Easy Way to Secure an Insecure Online Application with ModSecurity Say you have a nasty application on your Apache webserver that has been installed by some jerks from the marketing department and you can neither remove nor patch it. Maybe it is a time problem, a lack of know-how, a lack of source-code, or possibly even political reasons. Consequently you need to protect it without touching it. There is ModSecurity, but they say this is only for experts. A straightforward alternative is Remo, a graphical rule editor for ModSecurity that comes with a whitelist approach. It has all you need to lock down the application.

  • Secure Websites Using SSL And Certificates

    Author: punk0miTags: , , Comments: 8

    Secure Websites Using SSL And Certificates This how-to will guide you through the entire process of setting up a secure website using SSL and digital certificates. This guide assumes that you have already a fully functional (and configured) server running Apache, BIND, and OpenSSL. Just as a side note, this guide was written based on a Fedora Core 6 distribution, but should be the same for most other distros out there.

  • How to secure VNC remote access with two-factor authentication

    Author: nowenTags: Comments: 1

    How to secure VNC remote access with two-factor authentication VNC is the most popular remote access solution today. However, it was developed to provide remote access, not to provide secure remote access. Administrators have to add security to VNC by tunneling it through an encrpyted channel such as SSH and adding a layer of authentication. In this article, we will show you how to combine the NoMachine NX server to encrpyt VNC and remote X session combined with two-factor authentication from WiKID Systems to create a secure, fast remote access solution.

  • Custom Boot Menu for Windows XP

    Author: apachedudeTags: Comments: 2

    Custom Boot Menu for Windows XP  One of the first things that I do upon receiving a new windows computer is create my own custom boot menu that shows up every time I boot my machine. This is especially handy when you suspect a virus; you can reboot into safe mode and scan for it.