Server Security - Page 47 - Results from #920

Discover Server Security News

Silence the best security policy

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

Well-meaning hackers are creating an army of "script kiddies" by making security holes public, says a speaker at the Black Hat Security Conference.

LinuxSecurity.com Team
Jul 27, 2000

Setting up OpenBSD 2.7 as a cable NAT system

The first thing I did upon getting cable modem access in my apartment was to get an old Pentium 133 computer, put in two NICs, and fire up the OpenBSD 2.7 boot floppy. I did this for several reasons: first, because . . .

LinuxSecurity.com Team
Jul 25, 2000

Apache Guide: Apache Authentication, Part 1

In this article, I'm going to cover the standard way of protecting parts of your Web site that most of you are going to use. In the next part I'll talk about using databases, rather than text files, to contain your . . .

LinuxSecurity.com Team
Jul 24, 2000

Tech View: How 'buffer overflow' attacks work

A "buffer overflow" attack deliberately enters more data than a program was written to handle. The extra data, "overflowing" the region of memory set aside to accept it, overwrites another region of memory that was meant to hold some of the . . .

LinuxSecurity.com Team
Jul 20, 2000

Maximizing Apache Server Security

An extensive article on Apache security. ... However, does "free" come at a price when it comes to security? It doesn't have to. The diligent network manager will quickly recognize the advantages of choosing a platform that is field-tested on . . .

LinuxSecurity.com Team
Jul 19, 2000

Smart card accepted at portal

Pulsar Data Systems Inc. on Tuesday unveiled its secure e-commerce portal, PulsarData.com, which uses smart cards to enable agencies to purchase information technology products. Pulsar, a wholly owned subsidiary of Internet data security company Litronic Inc., announced the smart card feature, . . .

LinuxSecurity.com Team
Jul 13, 2000

Unix Security Holes

The hottest trend these days in network intrusion is to exploit buffer overruns, a technique where-by you feed a program more data than it has allocated, overwriting the memory in the hope of making the program do something it would normally . . .

LinuxSecurity.com Team
Jul 13, 2000

Securing Sendmail on Four Types of Systems

Depending on where you are and what you're doing there, security can mean very different things. This second article in our series on sendmail and security, based on the tutorial given by Eric Allman and Greg Shapiro at the recent USENIX . . .

LinuxSecurity.com Team
Jul 12, 2000

Installing djbdns (DNScache) for Name Service Part 2

Traditionally, BIND has been the nameserver of choice when doing name service on a Unix system. Like many of its close relatives, such as sendmail, it was designed at a time when the internet wasn't even known as the internet, and . . .

LinuxSecurity.com Team
Jul 11, 2000

Securing Sendmail

This two-part series on securing sendmail, based on the tutorial given by Eric Allman and Greg Shapiro at the recent USENIX technical conference in San Diego, begins by detailing the measures you can take to secure any sendmail installation. It continues . . .

LinuxSecurity.com Team
Jul 06, 2000

Securing Apache for AllCommerce

Tips on securing apache for use with virtual hosts. "There is no best way to do this except to be paranoid about every detail, pay attention to security alerts and trust no one. Fortunately, Apache has some recommendations. Here is how . . .

LinuxSecurity.com Team
Jun 29, 2000

Securing Your Web Pages with Apache

This article discusses the various security mechanisms for apache. "... But what's all this noise about 'discretionary' and 'mandatory,' you ask? Put simply, discretionary control (DAC) mechanisms check the validity of the credentials given them at the discretion of the . . .

LinuxSecurity.com Team
Jun 29, 2000

WireX Announces the Release of Immunix OS 6.2 and StackGuard 2.0

"Immunix" is a family of tools designed to enhance system integrity by hardening system components and platforms against security attacks. The Immunix OS is a Linux platform hardened with the Immunix tool set. Immunix works by hardening existing software . . .

LinuxSecurity.com Team
Jun 22, 2000

BIND 8.2.x Overflow Vulnerability

Here is an information bulletin that was issues by CIAC last Tuesday. It covers a BIND buffer overflow that exists in 8.2, 8.2.1 and 8.2.2. Here CIAC explains how the exploit works, "The exploit requires two systems to be . . .

LinuxSecurity.com Team
Jun 16, 2000

The Soothingly Seamless Setup of Apache, SSL, MySQL, and PHP

This article discusses the use of mod_ssl, OpenSSL, RSARef, MySQL and PHP to develop a secure web server. "Our objective is to install a web server that will allow us to host sites, that would be secure for e-commerce . . .

LinuxSecurity.com Team
Jun 09, 2000

Building an E-Commerce Site Part 3: Catalogs and Shopping Carts

In this installment, we add scripts to let the user browse our product catalog and we let them order our products. After completing this installment, you will have experience navigating the product catalog, viewing product details, managing the shopping cart, . . .

LinuxSecurity.com Team
Jun 09, 2000

Linux Kernel Security Bug Discovered

A serious bug has been discovered in the Linux kernel that can be used by local users to gain root access. The problem, a vulnerability in the Linux kernel capability model, exists in kernel versions up to and including version 2.2.15. According to Alan Cox, a key member of the Linux developer community, "It will affect programs that drop setuid state and rely on losing saved setuid, even those that check that the setuid call succeeded."To ensure that this vulnerability cannot be exploited by programs running on Linux, Linux users are advised to update to kernel version 2.2.16 immediately. Information on "capabilities" are discussed in the Capabilities FAQ We also recently ran a story on a capabilities-based operating system that is worth reading.

LinuxSecurity.com Team
Jun 08, 2000

BSD Based Operating Systems: IPCS Vulnerability

This advisory is for all 386BSD-derived OSes, including all versions of FreeBSD, NetBSD and OpenBSD. "An unprivileged local user can cause every process on the system to hang during exiting. In other words, after the system call is issued, no . . .

LinuxSecurity.com Team
Jun 08, 2000

Security scare as outsiders get access to NetBSD software password

Developers of the NetBSD open source operating system say a recent security breach did not compromise the software's source code. NetBSD developer and project spokesman Charles Hannum has confirmed that a key developer's password was "discovered" by outsiders.

LinuxSecurity.com Team
Jun 07, 2000

Hardening Linux Machines For Web Services

This is a introductory article on securing your Linux server. It starts with physical security then briefly discusses network security. "Your objective is to add as many rings or layers as possible, making the potential cracker take more . . .

LinuxSecurity.com Team
Jun 06, 2000

Server Security - Page 47

Securing Your Linux Server: Understanding and Mitigating Modern Threats

Essential Server Security Security Strategies for Administrators

Ensuring Linux Server Security: A Comprehensive Guide