Chrooted SSH/SFTP Tutorial (Debian Etch)

December 8, 2009

This tutorial describes two ways how to give users chrooted SSH
access. With this setup, you can give your users shell access without
having to fear that they can see your whole system. Your users will be
jailed in a specific directory which they will not be able to break out
of. The users will also be able to [...]

Read the full article →

Chrooted SSH/SFTP Tutorial (Debian Etch)

December 8, 2009
Read the full article →

Intrusion Detection: Snort (IDS), OSSEC (HbIDS) And Prelude (HIDS) On Ubuntu Gutsy Gibbon

January 8, 2010
Read the full article →

Intrusion Detection: Snort (IDS), OSSEC (HbIDS) And Prelude (HIDS) On Ubuntu Gutsy Gibbon

January 8, 2010

Everybody knows the problem, you have a IDS tool(s) installed and every tool has his own interface. Prelude will allow to log all of the events to the prelude database
and be consulted using one interface (prewikka). This howto will
describe how to install and configure the different tools that will
make up the complete solution.

Read the full article →

Meet the Anti-Nmap: PSAD (EnGarde Secure Linux)

January 8, 2010

Having a great defense involves proper detection and recognition of an
attack. In our security world we have great IDS tools to properly
recognize when we are being attacked as well as firewalls to prevent
such attacks from happening. However, certain attacks are not blindly
thrown at you – a good attacker knows that a certain amount of
reconnaissance and [...]

Read the full article →

How To Check If Your Server Is Infected With The Linux/Rst-B Backdoor (Debian Etch)

January 8, 2010

Linux Rst-B is a backdoor that can be used to add your server to botnets (see http://www.heise.de/newsticker/meldung/103563 (in German)). This short guide explains how you can install and use the Sophos Linux/RST-B detection tool to check your Debian Etch server and find out if it is infected with Linux Rst-B.

Read the full article →

Increasing the security of PPTP by adding two-factor authentication to poptop

January 8, 2010
Read the full article →

Increasing the security of PPTP by adding two-factor authentication to poptop

January 8, 2010
Read the full article →

Increasing the security of PPTP by adding two-factor authentication to poptop

January 8, 2010

PPTP does not have the best history in terms of security. The original Microsoft implementation for PPTP faired very poorly. MS-CHAPV2 solved these weaknesses – for wired networks. Unfortunately, back in 2004, Joshua Wright released a version of ASLEAP capable of brute-force attacking PPTP passwords
in a wireless environment. As a systems administrator for [...]

Read the full article →

Chrooting Apache2 With mod_chroot On Debian Etch

January 8, 2010

This guide explains how to set up mod_chroot
with Apache2 on a Debian Etch system. With mod_chroot, you can run
Apache2 in a secure chroot environment and make your server less
vulnerable to break-in attempts that try to exploit vulnerabilities in
Apache2 or your installed web applications.

Read the full article →

Virtual Hosting Howto With Virtualmin On CentOS 5.1

January 8, 2010
Read the full article →

Virtual Hosting Howto With Virtualmin On CentOS 5.1

January 8, 2010
Read the full article →

← Previous Entries