Search found 172 matches

by unspawn
2012/08/08 14:01:54
Forum: CentOS 6 - Security Support
Topic: Portaudit equivalent for CentOS?
Replies: 3
Views: 1202

Portaudit equivalent for CentOS?

Yum has the "yum-security" plugin. When installed running 'yum check-update --security' will list packages that fix a security issue and running 'yum list-sec' will return full identifiers which should cover advisories, Bugzilla tickets and CVE entries.
by unspawn
2012/07/20 22:55:40
Forum: CentOS 5 - Security Support
Topic: block specific users from going to the internet
Replies: 1
Views: 1603

Re: block specific users from going to the internet

Could be something like [code]iptables -A OUTPUT -o eth0 -p tcp ! -d $LANRANGE -m state --state NEW -m owner --uid-owner $UID -j DROP[/code] where "[i]-m state --state NEW[/i]" only considers new (not yet tracked) connections and "[i]! -d $LANRANGE[/i]" makes it apply to only connections trying to e...
by unspawn
2012/07/07 10:54:04
Forum: CentOS 6 - Security Support
Topic: Can there be an auto-disconnect "protective sphere-shield"..?
Replies: 3
Views: 1050

Can there be an auto-disconnect "protective sphere-shield"..

Yes, you probably could have, but I'd like to argue [i]against[/i] the concept for these reasons (in no particular order): - The idea itself seems based on problems with or weaknesses [i]intrinsic to a certain other OS[/i]: IMHO it would be better not to project the shortcomings of one OS on another...
by unspawn
2012/06/29 05:34:19
Forum: CentOS 6 - Security Support
Topic: Install Snort - NO Solution
Replies: 4
Views: 2925

Install Snort - NO Solution

[quote]Even in this Forum i didn't found the step by step to install SNORT[/quote] IMHO you should not create a new thread when you already have this one: https://www.centos.org/modules/newbb/viewtopic.php?topic_id=37579&forum=59 . [quote]but in the install steps it is fail[/quote] Saying "doesn't w...
by unspawn
2012/06/21 05:50:17
Forum: CentOS 6 - Security Support
Topic: How do I write my servers log files to a remote server or repository?
Replies: 5
Views: 2186

How do I write my servers log files to a remote server or re

[quote]jlehtone wrote: Automatic 'scp' implies that the webhost has something that can authenticate to the loghost. That sounds eerie.[/quote] I agree and it's not necessary. [quote]jlehtone wrote: Use of rsyslogd requires that the web server processes can log via system logger instead of direct fil...
by unspawn
2012/06/03 09:25:34
Forum: CentOS 6 - Security Support
Topic: Snort IPS
Replies: 3
Views: 3134

Snort IPS

[quote]could you please help me to have the step by step how can i download and install Snort for CentOS 6.2, [/quote] Regardless of what you choose your development machine (you better not be compiling software to on a production machines) should have the gcc gcc-c++ flex bison pcre-devel zlib-deve...
by unspawn
2012/03/24 16:09:28
Forum: CentOS 5 - Security Support
Topic: Security breach: Changed sshd_config and system time
Replies: 4
Views: 1840

Security breach: Changed sshd_config and system time

//FWIW the thread, leading to slightly more info, was also posted [url=https://www.linuxquestions.org/questions/linux-security-4/security-breach-changed-sshd_config-and-system-time-934430/]here[/url]. Apparently the OP fscked up file ownership and also didn't have SELinux running.
by unspawn
2012/02/29 16:57:22
Forum: CentOS 6 - Security Support
Topic: i want antivirus antimalware
Replies: 2
Views: 2165

i want antivirus antimalware

[quote]ndh90 wrote: i want antivirus and antimalware for my server. [/quote] Linux is a UNIX-like, multi-user, networked OS. Due to both design and current malware market economics it does not require AV SW. Unless you say need to share data with more vulnerable OSes. What Linux does need are admin ...
by unspawn
2012/02/16 01:31:38
Forum: CentOS 5 - Security Support
Topic: A total of 300 sites probed the server...
Replies: 6
Views: 2797

A total of 300 sites probed the server...

[quote]Davideer wrote: Last night, my website was really slow and crash one time. Today On my logwatch mail i see this message : "A total of 300 sites probed the server" with a list of all 300 IP... It's the second time in one month this appen to me. How can i protect my server against that ?[/quote...
by unspawn
2012/02/12 17:09:11
Forum: CentOS 6 - Security Support
Topic: Printing and SELinux
Replies: 8
Views: 3986

Re: Printing and SELinux

[quote]DavidMcCann wrote: Knowing what a problem SEL can be, I turned it off and tried again: success, so now I knew what was wrong. (..) the suggestion that one could use "semanage permissive -a cupsd_t", which didn't work either.[/quote] At least you tried to fix it yourself, good. What I was look...

Go to advanced search