As the mobile phones get smarter, they became an integral part of our life and very tempting attack vector. Today I red an article Voice Encryption: 9 out of 10 Products are Worthless (Technical Description) it is a nice example of with a little bit of creativity how easily you can bypass an expensive security [...]
Read the rest of this entry »Any server you put on the Internet will be subject automated and targeted attacks. If you look at your auth.log file you would see that your servers are constantly scanned and attacked. %99 of the attacks are automated and targeting standard ssh port (22). Try this command on your server. You can change the date [...]
Read the rest of this entry »Responding to a ping request can not be the part of job definition for a production/critical server. For critical systems It is better not to publish information more than it is absolutely necessary. Disabling response to ICMP ECHO requests is a measure we can easily implement. Tweet This Post
Read the rest of this entry »By default Apache server is configured in a way that it sends detailed information about it’s configuration (apache version number, compiled modules, etc). For production environments this information would be unnecessary. It is better not to publish it at all. Using the ServerTokens directive you can control the amount of information being sent to the [...]
Read the rest of this entry »During one of my latest projects I needed an radius client to troubleshoot a problem. For that purpose I have used the free NTRadPing utility. It is an free windows based radius client and it simplifies our investigation process. You can download it from here . Tweet This Post
Read the rest of this entry »We can disable SELinux by editing the /etc/selinux/config configuration file. We will need to change the following line SELINUX=enforcing as listed below. SELINUX=disabled After this modification we need to reboot our system. Tweet This Post
Read the rest of this entry »Today I saw an interesting interesting video. It is unbelievable what you can do with simple google knowledge. It is quite an eye opener. click here to watch it. Tweet This Post
Read the rest of this entry »Recently I have installed a mail server with the ClamAV (free anti-virus toolkit for UNIX). It is easy to test if the mail server is working. We can test it by sending and receiving emails. But what about the viruses? How can I test if the ClamAV is working properly? How can check if it [...]
Read the rest of this entry »What kind of protection do you have at your home or small office network? Are you using iptables? windows firewall or firewall of your adsl modem? Now a days having just a firewall is not good enough for your protection. Actually you can also see this from the way open source firewall projects are evolving. [...]
Read the rest of this entry »| M | T | W | T | F | S | S |
|---|---|---|---|---|---|---|
| « Jul | ||||||
| 1 | 2 | 3 | 4 | 5 | ||
| 6 | 7 | 8 | 9 | 10 | 11 | 12 |
| 13 | 14 | 15 | 16 | 17 | 18 | 19 |
| 20 | 21 | 22 | 23 | 24 | 25 | 26 |
| 27 | 28 | 29 | 30 | |||
Powered by WordPress ¬ dfBlog Theme (Version 1.1.4) design by danielfajardo web
21 processes generated in 0.343 seconds.
