Server Security - Page 40

We have thousands of posts on a wide variety of open source and security topics, conveniently organized for searching or just browsing.

Securing Your Linux Server: Understanding and Mitigating Modern Threats

In this digital age, Linux servers face unprecedented challenges posed by cyber threats. These, in turn, introduce new vulnerabilities that system administrators must address. Traditionally considered a more secure environment compared to other opera...
Oct 25, 2024
  0

Essential Server Security Security Strategies for Administrators

In the current threat landscape, Linux servers have eme...
Oct 03, 2024
  0
13.Lock StylizedMotherboard Esm H115

Ensuring Linux Server Security: A Comprehensive Guide

Linux servers form a vital backbone of today's Internet...
Oct 02, 2024
  0
22.Lock ScreenEffect Esm H115

Discover Server Security News

Go Hack Thyself, Urges NRC

Go Hack Thyself, Urges NRC

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

To defend themselves against a rising tide of electronic attacks, companies, agencies and other organizations should routinely try to crack their own secure systems, according to a report released today. To ensure cybersecurity, individual organizations should "conduct frequent, unannounced red-team penetration . . .

An Insecure Feeling About Microsofts Security

An Insecure Feeling About Microsoft's Security

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

Although Microsoft has said that Windows XP is its most secure operating system that it has ever developed, security issues found within Windows 98, ME, and XP suggest that this statement doesn't hold much water. I wonder how issues such as these will affect adoption rates of .NET, where security is of the utmost importance.. . .

Ending spam

Ending spam

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

Freeloading commercial emailers do more than fill your mailbox with unsolicited email. They also steal server time and network bandwidth, and have even crashed mailservers. And if your mail server can be used as a relay for spam, you may find your site "blackholed", cut off from sending email to many sites, in addition to getting thousands of angry email messages from the victims of the spam. . . .

Who Needs Hackers? Weve Got Microsoft!

Who Needs Hackers? We've Got Microsoft!

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

The latest Microsoft bug is a doozy. Why do these things keep cropping up? The federal government and technology industry want you to believe the threats to our networks are external, not internal, where someone must be held accountable when things go wrong. Thus, we hear the rhetoric about cyberterrorists, hackers, and the so-called 'Digital Pearl Harbor' - things you can't easily point fingers at and hold someone accountable for when bad things happen.. . .

Save Your Site from Spambots

Save Your Site from Spambots

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

The problem: too much spam. Unsolicited advertising email continues to account for untold business losses each year. To give you an idea of the scope of the problem, in 1998 AOL reported that of the approximately 30 million email messages its . . .

Five Steps to Enterprise Security

Five Steps to Enterprise Security

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

Don't believe anyone who tells you he has the secret to enterprise security--the problem is far too big for any one service or product or practice to fix. But there are five definite steps you should take to establish a security baseline and set parameters for further and industry-specific security measures.. . .

Security measures: Linux vs BSD

Security measures: Linux vs BSD

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

A good case can also be made that Linux is inherently more stable and secure than Microsoft products, either because it's based on a better core of code or because it's open source, and many individuals have a stake in monitoring and making repairs.. . .

Tool of the Month: Vipuls Razor

Tool of the Month: Vipul's Razor

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

There are few things in life that annoy me as much as spam -- and I'm not talking about the canned meat by-product variety. Unsolicited ads are annoying in any form, but the nature of spam is parasitic as well: it steals time and bandwidth. So, for my money, anything that helps defeat spam is a Good Thing.. . .

New Vulnerability in OpenSSH

New Vulnerability in OpenSSH

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

A new vulnerability in OpenSSH can, under some circumstances, be exploited by a local attacker to execute arbitrary code with the permissions of the root user. Exploiting this vulnerability requires that the "UseLogin" option be enabled, which most systems do not configure in the default installation. The vulnerability affects OpenSSH versions earlier than 3.0.2.. . .

Procmail Basics

Procmail Basics

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

In today's article, I'll build and configure procmail and get you started on a few basic recipes. In next week's article, I'll continue with some more complicated recipes and look at procmail's logging features.. . .

Do you Trust your System Logs?

Do you Trust your System Logs?

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

A commonly used technique among computer crackers, and experienced thieves as well, is to erase their fingerprints from the crime scene. This usually means erasing or modifying the logs stored on the computer that will expose them if carefully examined. Unprotected . . .

Vulnerability Life Cycles

Vulnerability Life Cycles

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

The vulnerability life cycle has three phases: the research/discovery phase -- in which both malicious and nonmalicious security researchers seek new holes in products; the disclosure phase -- in which the discoverer of the new vulnerability tells others about it; and . . .

Proxy Internet Access With Squid

Proxy Internet Access With Squid

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

At its simplest, a proxy server is a computer that accepts your requests for websites, makes the requests on your behalf (read: by proxy), and returns the results to you. With a proxy server, your Web browser never actually accesses any computers on the Internet. Web access is not all a proxy server can provide. Most proxy servers can proxy access to any Internet service. This means we can monitor FTP transfers and telnet sessions as well as Web browsing.. . .

On the Security of PHP, Part 2

On the Security of PHP, Part 2

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

The way to secure PHP scripts is through a carefully selected combination of configuration settings and safe programming practices. Based on the vulnerabilities that we have studied so far, we will now set forth to establish some rules that can help avoid dangerous situations. . . .

Limpninja Trojan horse emerges

'Limpninja' Trojan horse emerges

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

Security watchers are speculating that hackers familiar with the ways of the ninja may be attempting to construct a distributed denial of service (DDos) network on compromised Secure Shell Hosts (SSHs). Threads on security newsgroups have suggested that hackers may be . . .

vsftpd-1.0.0 Released

vsftpd-1.0.0 Released

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

Chris Evans, author of the "very secure" FTP daemon, has released version 1.0 of his software. The previous version included bandwidth control. Chris writes, "vsftpd is also extremely fast and scalable. vsftpd has achieved ~4000 concurrent users on a single machine, in a production environment.". . .

Get the Latest News & Insights

Sign up to get the latest security news affecting Linux and open source delivered straight to your inbox.

© 2024 Guardian Digital, Inc All Rights Reserved