Browsing articles tagged with "security - 3/171 - Admins Goodies"
Oct 27, 2012
tom

Certificates compartments (certmgr.msc)?

After reading a while , Im trying to understand what kind of certificates will be found at : Personal Other People Trusted Root Certicfiation Authorities will personal will contains only private keys ? I’m a bit confused. What about certificates which arent trusted and I manually trust them , where will they be ? Also , Why do I only have the CurrentUser Tab in my computer ? where is the local computer tab ? […]

Continue Reading »
Oct 23, 2012
tom

Which services to disable on a CentOs 5.8 web/database server?

I have just setup my CentOS 5.8 64 [final] server as a webserver. Specs: 2x E5620 Intel CPU, DDR3 RAM, Hardware Adaptec RAID 10, 4x SAS drives. I have installed myself: Nginx PHP-FPM MySQL [ourdelta.org version] Sphinx Vsftpd Fail2ban Citadel [ddos flood protection] Munin NTP Htop Iptraf These are all things that I actively use to run my websites. Now my question: I found this article: http://www.vr.org/kb/1002/Optimize-and-disable-default-CentOS-services.html Which talks about a whole list of services […]

Continue Reading »
Oct 16, 2012
tom

Is it possible to exploit a sql injection vulnerability with a select only permission, if I knew admin credentials?

A friend pointed out a sql injection vulnerability one an application I work with. This search parameter: ‘; exec xp_cmdshell ‘dir’; — Returned the message: The EXECUTE permission was denied on the object ‘xp_cmdshell’, database ‘mssqlsystemresource’, schema ‘sys’. Because the search is run from an account that only has select permissions on a few tables and stored procedures. I was wondering, if a malicious user happened to know the login information of an admin account […]

Continue Reading »
Oct 14, 2012
tom

Should the virtualization host be allowed to run any service?

I recently setup a virtualization server for the small company I’m running. This server runs few virtual machines that are used for development, testing, etc… My business partner works from a remote location, thus I also installed a vpn server on the virtualization host to make it possible for him to safely reach the company services. Moreover, again on the virtualization host, I installed bacula to perform the backup of the data. Is it advisable/good […]

Continue Reading »
Oct 9, 2012
tom

Difference between Amazon Security group and firewall

Is there any difference between the Amazon EC2 “Security groups” and a regular firewall? Thanks! Asked by OckhamsRazor No, there’s no major difference. EC2 security groups are basically firewall configurations that are easier to keep track of and automatically apply and clear as machines are added and removed from your groups. Answered by Jeff Ferland Check more discussion of this question. Bookmark on Delicious Digg this post Recommend on Facebook share via Reddit Share with […]

Continue Reading »
Sep 26, 2012
tom

Methods to ban bots, force attacks on my server

I’ve been getting some bots trying to get hold of my database by mass attacking /sertup/scripts.php of various database program. I wanna ban such activities. The closest I found was this: http://www.rubyrobot.org/article/protect-your-web-server-from-spambots What is the best way, or is there any scripts to ban bots from attacking? Thanks. Asked by Victor Fail2ban will turn the logs of the attacks into firewall rules to block them. It may suit your needs. Answered by Cakemox Check more […]

Continue Reading »
Sep 22, 2012
tom

Is there a ready-made inotify program to monitor changes on a directory?

I am trying to understand how inotify works and it seems that you need to program stuff in C for it to work. Since I don’t know C, I was wondering if there is a program or script already made to monitor a single directory. Thanks in advance for your suggestions. Regards Asked by eric01 Check out incron. Incron uses the inotify kernel hooks to let you run cron-like commands when certain specified events happen […]

Continue Reading »
Sep 22, 2012
tom

Finding latest successful logins and failed attempts to a CentOS server

I’m looking for a log file or any service to report the latest login attempts which have failed due to username/password miss match. Is there such utility available for CentOS? (built-in is preferred) My second question, and more generally, I need a log file of penetration attempts to my server. Ideally, this log should contain all attempts including logins, httpd activities, and other conventional open ports. Asked by ahmad The question is here offtopic, but […]

Continue Reading »
Sep 22, 2012
tom

Reporting Penetration Attempts to My Server

I need a log file of penetration attempts to my server. Ideally, this log should contain all attempts including logins, HTTPD activities, FTP activities, NFS, and other conventional open ports. However, it is enough for me to have HTTPD, FTP, and NFS. Is there such service (or log files) available in CentOS (built-in preferred)? Asked by ahmad There is no single log file that included that logs all these things. You will need to go […]

Continue Reading »
Sep 21, 2012
tom

Window Servers 2003 Security After Support Lifecycle

Hello,I wanted to ask if let’s say that Microsoft has stopped supporting Windows Server 2003 now so there is no any security updates and I use that system for Domain Controller (Windows XP/7 Professional Clients) and File Server only + I’m using ESET NOD23 AntiVirus. Will my system be secure? I’m asking because I don’t surf internet on that system nor I will install/open any programs/documents and that server is connected to router without any […]

Continue Reading »
Pages:«1234567...171»