Server Security - Page 41

We have thousands of posts on a wide variety of open source and security topics, conveniently organized for searching or just browsing.

Securing Your Linux Server: Understanding and Mitigating Modern Threats

In this digital age, Linux servers face unprecedented challenges posed by cyber threats. These, in turn, introduce new vulnerabilities that system administrators must address. Traditionally considered a more secure environment compared to other opera...
Oct 25, 2024
  0

Essential Server Security Security Strategies for Administrators

In the current threat landscape, Linux servers have eme...
Oct 03, 2024
  0
13.Lock StylizedMotherboard Esm H115

Ensuring Linux Server Security: A Comprehensive Guide

Linux servers form a vital backbone of today's Internet...
Oct 02, 2024
  0
22.Lock ScreenEffect Esm H115

Discover Server Security News

On the Security of PHP

On the Security of PHP

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

This article will provide you an overview of various security issues with PHP and offer advice on secure PHP programming practices. PHP has achieved a stable and solid presence on the Web in the last several years, and its popularity as . . .

Fingerprinting Port 80 Attacks

Fingerprinting Port 80 Attacks

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

bob writes, "CGIsecurity.com recently wrote a paper on fingerprinting port80 attacks." These holes can allow an attacker to gain either administrative access to the website, or even the web server itself. This paper looks at some of the signatures . . .

ApacheWeek: 2.0 Security Summary

ApacheWeek: 2.0 Security Summary

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

Two denial of service attacks were found in the Apache 2.0 code this week - both concerned with memory usage when sending large requests. The first was that the server did not respect the maximum header field length, and would consume memory indefinitely while reading a header line.. . .

Dave Dittrich Responds to WinXP Security Claim

Dave Dittrich Responds to WinXP Security Claim

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

Dave Dittrich, best known for his Honeynet and DDoS expertise, responds to claims made by Steve Gibson claiming that "raw sockets are the devil" in the latest OS by Microsoft. Dave writes, "Steve Gibson is *still* pushing "raw sockets are the devil?" Anyone (especially journalists) who are interested in this topic had best look into the details, not just take what Steve tells them.". . .

Good security administration is crucial

Good security administration is crucial

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

Firms should revamp their security admin rather than just avoiding Microsoft products, warns expert. Firms are being advised to tighten up on security administration rather than switch from Microsoft software to open source operating systems, as fears . . .

A Sysadmins Security Basics

A Sysadmin's Security Basics

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

System administrators are no longer alone in their concern for security. The increase in high-profile virus attacks, and a general sense of heightened security, means that executives are likely to have security on their mind. It may be easier than ever . . .

Web server attacks doubled over the last year

Web server attacks doubled over the last year

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

Web server attacks have doubled over the course of the last year, despite increased spending on security. That's the main conclusion of a survey of more than 2,500 organisations, sponsored by security firms TruSecure and Predictive Systems. The survey found that . . .

BSD security fundamentals

BSD security fundamentals

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

Subterrian.net has a copy of the presentation delivered by Sean Lewis at ToorCon 2001, held last weekend in San Diego, Calif. Lewis discusses BSD essential BSD security issues, working well as a primer for new and experienced users alike. Read all . . .

Improving the security of open UNIX platforms

Improving the security of open UNIX platforms

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

This article takes a look at a little shell application that uses an innovative approach to increasing open UNIX security. A step-by-step analysis of the code is provided. The author's areas of expertise are in Web programming and cutting-edge network security development.. . .

vsFTPd Includes Bandwidth Control!

vsFTPd Includes Bandwidth Control!

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

vsFTPd, the "very secure" FTP daemon, now includes the ability to control bandwidth by preventing the link from being saturated. "vsftpd is an FTP server, or daemon. The "vs" stands for Very Secure. Obviously this is not a guarantee, but a reflection that I have written the entire codebase with security in mind, and carefully designed the program to be resilient to attack.". . .

Bug Watch - Focus on operating systems

Bug Watch - Focus on operating systems

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

With yet another Linux-based vulnerability hitting last week, Mark Read, network security analyst at MIS Corporate Defence Solutions, delves into an age-old debate that fuels many a discussion. Yes, it's the same old story of Microsoft versus Linux in the race for optimum IT security. What everyone wants to know is, who will cross the finishing line first?. . .

The Safe Way to Remote Console

The Safe Way to Remote Console

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

Building your own console server is easy. All you need is an old PC and some additional serial cards (most PCs come with only two ports). Multiport serial boards, such as those from Digi International, that install under Linux are available. . . .

A Tarpit That Traps Worms

A 'Tarpit' That Traps Worms

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

"LaBrea" is a free, open-source tool that deters worms and other hack attacks by transforming unused network resources into decoy-computers that appear and act just like normal machines on a network. But when malicious hackers or mindless worms such as Nimda . . .

Is Linux secure enough?

Is Linux secure enough?

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

Although proponents argue that Linux is at least as secure-and perhaps more secure-than Unix, Microsoft Corp.'s Windows NT or Novell Corp.'s NetWare, there is still concern at many federal agencies about the operating system's safety.. . .

FBI investigating new Internet worm

FBI investigating new Internet worm

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

If Attorney General Ashcroft hadn't talked about this Windows worm on national TV, and received at least ten in my mailbox already, this would probably otherwise belong on an NT security web site, but certainly many of use have heterogeneous networks. Nimbda is Admin backwards... "The worm, known as "W32.Nimda," had affected. . .

A Perl Package for Monitoring Traffic

A Perl Package for Monitoring Traffic

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

The rtr-graph package described in this article is a set of Perl scripts for polling routers (or other SNMP-enabled devices) for information about traffic in and out of specified interfaces. You can set up "rtr-traff" as a cron job to poll . . .

Linux Trojan spotted in the wild

Linux Trojan spotted in the wild

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

"Eric Chien, chief researcher at Symantec's antivirus research centre, does not expect the virus to spread, principally because it lacks the self-replication characteristics that made Code Red and the Lion worm (which affected Linux servers) such nuisances. "I don't think . . .

Get the Latest News & Insights

Sign up to get the latest security news affecting Linux and open source delivered straight to your inbox.

© 2024 Guardian Digital, Inc All Rights Reserved