Linuxaria

How to protect Apache with Fail2ban

Apr 232013

Around 2 years ago I wrote an article about fail2ban.

Fail2ban is an intrusion prevention framework written in the Python programming language. It is able to run on POSIX systems that have an interface to a packet-control system or firewall installed locally (such as, iptables or TCP Wrapper).
Fail2ban’s main function is to block selected IP addresses that may belong to hosts that are trying to breach the system’s security. It determines the hosts to be blocked by monitoring log files (e.g. /var/log/pwdfail, /var/log/auth.log, etc.) and bans any host IP that makes too many login attempts or performs any other unwanted action within a time frame defined by the administrator.

Today I want to show you some configurations that you can use to improve the security of your Apache.
Continue reading »

Find me on Google+

How to scan Linux for vulnerabilities with lynis

Pills, Review 24 Responses »

Apr 122013

Article by Dan Nanni first published on xmodulo.com

As a system administrator, Linux security technician or system auditor, your responsibility can involve any combination of these: software patch management, malware scanning, file integrity checks, security audit, configuration error checking, etc. If there is an automatic vulnerability scanning tool, it can save you a lot of time checking up on common security issues.

One such vulnerability scanner on Linux is lynis. This tool is actually supported on multiple platforms including CentOS, Debian, Fedora, FreeBSD, Mac OS and Ubuntu.

Find me on Google+

The Importance of Securing a Linux Web Server

Article, Howto 3 Responses »

Jan 132013

Today I present a really interesting article by Scott Miller first published on Infosecinstitute.com.

With the significant prevalence of Linux web servers globally, security is often touted as a strength of the platform for such a purpose. However, a Linux based web server is only as secure as its configuration and very often many are quite vulnerable to compromise. While specific configurations vary wildly due to environments or specific use, there are various general steps that can be taken to insure basic security considerations are in place.

Many risks are possible from a compromise including using the web server into a source of malware, creating a spam-sending relay, a web or TCP proxy, or other malicious activity. The operating system and packages can be fully patched with security updates and the server can still be compromised based purely on a poor security configuration. Security of web applications first begins with configuring the server itself with strict security in mind.

Find me on Google+

An Open Source Board Game about Network Security: d0x3d

01/04/2013
An Open Source Board Game about Network Security: d0x3d
Posted by linuxari at 22:22
No Responses
Opinion, Review
Tagged with: boardgame, digital assets, fun game, network integrity, open source, security, security education, security group, security threats, sicurezza, teaching tool, top security

[d0x3d] is a boardgame designed for informal security education, this is an incredibly fun game that proactively teaches about network integrity and the security of information. Inspired by Forbidden Island, d0x3d! and is released under an open source license. It requires only a small number of people but packs a very powerful lesson. Incorporating it [...]

An introduction to security models in Linux

12/26/2012
An introduction to security models in Linux
Posted by linuxari at 23:55
2 Responses
Article, Howto
Tagged with: DAC, linux, linux system, Mac, operating system, RBAC, security, security models, selinux

Today I’m glad to republish an interesting article of Adrian Stolarski first published on Infosec, a great source of information about security. It’s a good summary of the different type of security models that you can have in a Linux system, focused on SELinux, and if you are interested in this topic, be sure to take a [...]

Older Entries