Archive

Archive for the ‘Security’ Category

Setting up exim with AUTH LOGIN, AUTH PLAIN and AUTH CRAM-MD5 with Debian

November 23rd, 2010 3 comments

Hello everyone,

I faced recently lots of trouble while setting up a Debian box with exim.

Obviously, the documentation was outdated or incomplete on some aspect, and I lost so many time searching “WTF my exim4 is not making AUTH PLAIN, AUTH LOGIN and/or AUTH CRAM-MD5″ that I though it would be good to share the solution with you guys.

I know some of you would say “Damn dude, this is insecure to do it!” and you are right (except perhaps for CRAM-MD5 which add little more complexity than LOGIN), but anyway, here is a 1st shot on “how to make it work simple” before you finally set SSL on it.

Also, some people might use port with authentication, because their lossy client / provider don’t support SSL. (This is probably the case with some mobile phone… I believe)

Read more…

Categories: Linux, Mail, Security Tags: , ,

Checking for rootkit using rkhunter

November 18th, 2010 No comments

It’s pretty common nowadays to have linux server and linux boxes at home, or at work, for hosting website and even more.

It’s also true that linux offer a high level of security, because most of the source codes are open (means everyone have access to it) but also because most linux distro check and provide solution for all kind of security flaws in their product.

Read more…

Categories: Linux, Security Tags:

Using iptables to reject w00tw00t.at.ISC.SANS.DFind scanners

June 10th, 2010 3 comments

Hello people,

I found recently in my apache log thousands of “w00tw00t.at.ISC.SANS.DFind” requests coming from all parts of the world.

I’ve been searching for solutions to remove their hits because they consume resources on my servers and they doesn’t help when computing my visitors stats…

Read more…

Categories: Apache, Linux, Security Tags: , , ,

Setting up a permanent SSH tunnel between 2 servers

May 20th, 2010 4 comments

Greeting everyone,

Today, I’ll show you how to setup an easy and permanent SSH tunnel that auto reconnect in case of failure between two linux servers.

Read more…

Categories: Linux, Security Tags: ,

How to secure your webserver against SYN flooding and DoS attack

April 24th, 2010 7 comments

Hello,

It has become popular nowdays to receive incoming attack from foreign server, with the only goal to discard all access / connections to your server. Those attack are generally call “DoS” or “Denial of Service” attack.

Today, I’ll give you a few tricks to reduce impact of such impact on your linux server. Keep in mind that there are no solutions to discard those types of attack, and the tricks I give you today only reduce impact it can have on your server…

Read more…

Categories: Debian, Linux, Security Tags: , , ,

Using iptables to secure your webserver

April 22nd, 2010 1 comment

Greeting everyone,

Today, I’ll show you how you can protect your Linux web server freely and easily using iptables (linux software firewall)

Read more…

Categories: Linux, Security Tags: , , ,