Posts Tagged 'secure'

Be secure use the latest Joomla! version

Details

Category: News

Published on Monday, 08 June 2009 00:00

Written by Administrator

Hits: 8121

If you are running any of the following Joomla versions it might just be a matter of time before you too are hacked!

• Joomla! 1.5.0
• Joomla! 1.5.1
• Joomla! 1.5.2
• Joomla! 1.5.3
• Joomla! 1.5.4
• Joomla! 1.5.5
• Joomla! 1.5.6
• Joomla! 1.5.7
• Joomla! 1.5.8
• Joomla! 1.5.9
• And maybe to a lesser extent Joomla! 1.5.10

Implement SSH port knocking on OpenSuSE

Details

Category: Uncategorised

Published on Friday, 03 July 2009 00:00

Written by Administrator

Hits: 9548

Port Knocking is a technique to secure services behind a firewall until a specific knock sequence is given. Once that sequence is given, the IP address that initiated the knock may be allowed to access the service for a short period of time. A knocking server listens to all traffic on an Ethernet (or PPP) interface, looking for special "knock" sequences of port-hits. A client makes these port-hits by sending a TCP (or UDP) packet to a port on the server.

This is a bit paranoid, but it add another layer of security, an attacker will have either to try all ports combinations or know the secret combination (knock) to be able to connect to your SSH daemon for example.

First, you’ll have to be sure to have a port knocking client, or you will be kick out forever of your own server!

• Cygwin/Win32 Knock Client
• Native Win32 Client
• MacOS Client
• You can find of information and a nice list of other knock clients and servers over at http://www.portknocking.org/

Read more: Implement SSH port knocking on OpenSuSE

Ubuntu 12.04 update nginx to the latest version

Details

Category: Linux

Published on Friday, 17 August 2012 09:13

Written by Administrator

Hits: 2829

Official version of nginx for Ubuntu Precise is 1.1.19 but the latest available stable version is 1.2.2 (Changes), In this post I will present you how to update to the latest available version.

vi /etc/apt/sources.list

and add depending on your Ubuntu version either

For Ubuntu 10.04 Lucid:

deb http://nginx.org/packages/ubuntu/ lucid nginx
deb-src http://nginx.org/packages/ubuntu/ lucid nginx

For Ubuntu 12.04 Precise:

deb http://nginx.org/packages/ubuntu/ precise nginx
deb-src http://nginx.org/packages/ubuntu/ precise nginx

Now you can run

apt-get update

When using the public nginx repository for Ubuntu, you’ll get this error

W: GPG error: http://nginx.org lucid Release: The following signatures 
couldn't be verified because the public key is not available: NO_PUBKEY ABF5BD827BD9BF62

First of all this is only warning and you can ignore it, if you know what are you doing and in case you prefer to add public key, used for signing packages and repository, just run:

gpg -a --export 7BD9BF62 |  sudo apt-key add -

or

wget http://nginx.org/packages/keys/nginx_signing.key
cat nginx_signing.key | sudo apt-key add -

apt-get update should now run fine, however after running an

apt-get install nginx

you may still get this kind of error:

dpkg: error processing /var/cache/apt/archives/nginx_1.2.2-1~precise_amd64.deb (--unpack):
 trying to overwrite '/etc/logrotate.d/nginx', which is also in package nginx-common 1.1.19-1
dpkg-deb: error: subprocess paste was killed by signal (Broken pipe)
Errors were encountered while processing:
 /var/cache/apt/archives/nginx_1.2.2-1~precise_amd64.deb

just remove nginx-common and retry

apt-get remove nginx-common 

More at http://wiki.nginx.org/Install

chkrootkit

Details

Category: security

Published on Friday, 20 July 2007 00:46

Written by Administrator

Hits: 8847

Read more: chkrootkit

Create Your own SSL certificate for Apache

Details

Category: Apache

Published on Sunday, 01 July 2007 22:49

Written by Administrator

Hits: 9524

Create a new RSA key

# openssl genrsa -des3 -out server.key 1024

Create a non encrypted version for Apache

# openssl rsa -in server.key -out server.key.unsecure

Prepare the mark inquiry

# openssl req -new -key server.key -out server.csr

Sign the certificate

# openssl x509 -req -days 365 -in server.csr -signkey server.key -out server.crt

Add the SSL certificate to Apache

# cp server.key.unsecure /etc/httpd/ssl.key/server.key
# cp server.crt /etc/httpd/ssl.crt/server.crt
# chmod 400 /etc/httpd/ssl.key/server.key
# chmod 400 /etc/httpd/ssl.crt/server.crt

Restart Apache

# /etc/init.d/apache restart

# apache2ctl gracefu

1 week of mod_evasive some nasty bots get blacklisted

Details

Category: security

Published on Wednesday, 30 August 2006 23:13

Written by Administrator

Hits: 13097

• DOSHashTableSize: is the size of the table of URL and IP combined. The greater this setting, the more memory is required for the look up table, but also the faster the look ups are processed. This option will automatically round up to the nearest prime number.
• DOSPageCount: is the number of same page requests from the same IP during an interval that will cause that IP to be added to the block list.
• DOSSiteCount: is the number of pages requested of a site by the same IP during an interval which will cause the IP to be added to the block list.
• DOSPageInterval:  Interval for the 'DOSPageCount' threshold in second intervals.
• DOSSiteInterval:Interval for the 'DOSSiteCount' threshold in second intervals.
• DOSBlockingPeriod: is the time the IP is blacked (in seconds
• DOSEmailNotify: can be used to notify by sending an email everytime an IP is blocked
• DOSSystemCommand: is the command used to execute a command when an IP is blocked. It can be used to add a block the user from a firewall or router.
• DOSWhiteList: can be used to whitelist IPs such as 127.0.0.1

Read more: 1 week of mod_evasive some nasty bots get blacklisted

Best nginx configuration for Joomla

Details

Category: Joomla

Published on Monday, 23 January 2012 20:31

Written by Administrator

Hits: 4096

nginx (pronounced “engine-x”) is an open source Web server and a reverse proxy server for HTTP, SMTP, POP3 and IMAP protocols, with a strong focus on high concurrency, performance and low memory usage. It is licensed under a BSD-like license and it runs on Unix, Linux, BSD variants, Mac OS X, Solaris, AIX and Microsoft Windows [WikiPedia]

These are my reusable settings for any Joomla hosting, these are the most secure, and fastest settings to the best of my knowledge.

Read more: Best nginx configuration for Joomla

Checklist to Secure your Linux Server and Joomla Website

Details

Category: Joomla

Published on Sunday, 08 January 2012 22:26

Written by Administrator

Hits: 1570

My mind map you can use as a checklist to secure your Linux server and Joomla has a new home, it is now located at:

http://joomla-security.waltercedric.com

I will update it regularly with new tips and how-to. Your feedback is as always welcomed, you can use the comment thread below.

How to put wikimedia in read only mode

Details

Category: My Homepage

Published on Thursday, 18 August 2005 00:00

Written by Administrator

Hits: 7134

I am encountering strong spammings tentatives in my Wiki as well, that's why I decide to lock write changes to my WIki. This is how You can also do it.

Open LocalSettings.php and set a new key $wgReadOnlyFile like this 

$wgReadOnlyFile="./.lock.txt";

The value must be the name of of a file, then put the reason for the lock inside the file using the wikipedia notation

'''I've block my Wiki because of spammers! It will reopen as soon as I find a solution, if It annoy You can still contact me at http://www.waltercedric.com'''

The contents of the file will be displayed to anyone trying to edit the wiki.

Note that readonlyfile is not guaranteed to be absolutely safe; if you need to guarantee that MediaWiki will never write to the data, you need to do this on the database itself (e.g. revoke UPDATE,INSERT,DELETE from the wiki user, or put MySQL into read-only mode).