Apache httpd hardening
Introduction
Apache is one of the most widely-used and popular web servers. It is also one of the most secure web servers available. In this article, I will explain some tips and tricks that will secure your Apache server.
This is a generic ‘quick n dirty’ hardening profile.
Hide version:
1 2 | ServerSignature Off ServerTokens Prod |
Turn Off Server-Side Includes …Read More
Protecting Apache Server From Denial-of-Service Attacks
Protecting Apache Server From Denial-of-Service Attacks
Denial-of-Service (DoS) attack is an attempt to make a machine or network resource unavailable to its intended users, such as to temporarily or indefinitely interrupt or suspend services of a host connected to the Internet. A distributed denial-of-service (DDoS) is where the attack source is …Read More
Install and Configure CSF ConfigServer Firewall
Install and Configure CSF ConfigServer Firewall
About CSF Firewall
ConfigServer Security and Firewall, also known as CSF, is an opensource software firewall application. It is working based on iptables. Firewall configuration script created to provide better security for your server while giving you an easy to use, advanced interface for managing your firewall …Read More
Configure FirewallD in RHEL/CentOS 7 and Fedora 21/22
In a previous post I’ve showed how to disable firewalld and roll back to our favorite post-systemd iptables firewall. In this post we gonna see how to Configure FirewallD in RHEL/CentOS 7 and Fedora 21/22.
Firewalld is a dynamic daemon to configure and manage firewalls (iptables rules typically) with support for …Read More
Email Security – Blocking outgoing spoofed emails from cPanel server
As a company that proactively manages web hosting servers, we do regular security audits on them. One of the recurring issues we have seen with un-managed servers is loss of server reputation, and service up-time through outbound spam mails.
To combat spam, the first step is finding a common pattern that …Read More
Bulk / Mass delete mails from exim mail queue
Sometimes a user or a domain might be hijacked. Most common use of hijacked accounts is to send spam. After dealing with the account itself, you may find that there is a queue of hundeds or maybe thousands (in my case I got a record of 108K mails in queue) …Read More
Chmod all files to 644 and all folders to 755 of a directory
Why to chmod ? Using suPHP or FastCGI you gonna notice that they need special permissions. In dso for example 777 is the default. Having those permissions using suPHP is first
dangerous and secondly
not recommended
Especially when almost all providers forbid 777 when using suPHP. So we need to change permissions at …Read More
Install OpenVPN On CentOS / RHEL 7
Security is most important aspect in internet. Outsiders can monitor internet traffic between your computer and the web. Here the importance of VPN comes. VPN, or virtual private network, is a secure method of connecting remote internet resources together as if they were under the same LAN. OpenVPN is a …Read More
Improve security with polyinstantiation
If you’re concerned about protecting world-writeable shared directories such as /tmp or /var/tmp from abuse, a Linux® Pluggable Authentication Module (PAM) can help you. The pam_namespace module creates a separate namespace for users on your system when they login. This separation is enforced by the Linux operating system so that …Read More
Quit Bash Shell Without Saving Bash History (5 Methods)
Sometimes it is very useful to delete / remove Bash history partially or completely when log out. Here is my favourite methods howto log out / quit / exit Bash shell without saving Bash history.
Remove Only Current Session Bash History and Leave Older History Untouched
1. Quit Bash Shell Without Saving …Read More
Linux: 25 PHP Security Best Practices For Sys Admins
Linux: 25 PHP Security Best Practices For Sys Admins
by NIXCRAFT on NOVEMBER 23, 2011 · 58 COMMENTS· LAST UPDATED FEBRUARY 20, 2014
in PHP, REDHAT/FEDORA LINUX, SECURITY
PHP is an open-source server-side scripting language and it is a widely used. The Apache web server provides access to files and content via the …Read More
20 IPtables Examples For New SysAdmins
Linux comes with a host based firewall called Netfilter. According to the official project site:
netfilter is a set of hooks inside the Linux kernel that allows kernel modules to register callback functions with the network stack. A registered callback function is then called back for every packet that traverses the …Read More