Apache WordPress Drupal Website Permissions | Permissions on a Linux webserver is an often confusing topic but hopefully I can clear the mud. There may not be one right answer for all, but below are some suggested configurations! The following applies to WordPress, Drupal, or any similar application. Two concepts to hang on to: – In Linux there are users who
How to Generate a Private Key and CSR from Command Line
How to Generate a Private Key and CSR from Command Line | Use the following command to generate a private key and certificate signing request (CSR): $ openssl req -new -newkey rsa:2048 -nodes -keyout server_private.key -out server_csr.csr In the dialog that follows, pay particular attention to the CommonName (CN) indication. If you need a certificate for example.com, use example.com (exactly) as the CN. For example, if you
Monitor MySQL Performance with mytop
Monitor MySQL Performance with mytop | mytop is an excellent app to monitor mysql performance. Let’s check it out! Firstly, install mytop: $ sudo apt-get install mytop Run mytop with tack tack prompt to have mytop prompt for the root mysql password: $ mytop –prompt Done! You can now monitor the number of mysql queries the server is processing as well
Tunnel DNS through ssh -D socks proxy
Tunnel DNS through ssh -D socks proxy | When using ssh -D to setup a socks proxy, DNS queries and DNS traffic are not sent through the ssh tunnel. However, with Firefox a config change can be made to send DNS traffic through the ssh tunnel. Here’s how it works! First, establish an ssh proxy: $ ssh -D 9000 user@host Then in Firefox,
Nessus html5 URL
Nessus html5 URL | Nessus now has a fancy html5 interface! The URL is: https://localhost:8834/html5.html
CentOS 6 or Red Hat 6 | Install DHCP Server
CentOS 6 or Red Hat 6 | Install DHCP Server | On CentOS 6 or Red Hat 6, installing a DHCP server is not too difficult. I’ll show you how it works! First, install the DHCP server: $ sudo yum install dhcp The configuration file (blank) is located here: /etc/dhcp/dhcpd.conf To copy a sample configuration file over for the production file, use the following command: $
Use nmap to check DNS configuration best practices
Use nmap to check DNS configuration best practices | A new NSE script in nmap 6.25 checks DNS zone configuration best practices. I’ll show you how it works! First, you will need nmap 6.25 (or later) installed: http://nmap.org/download.html Now with nmap 6.25 installed, run the below command against a DNS server. In this example, I am checking the configuration of the zone google.com from
Wordfence: Security Plugin for WordPress
Wordfence: Security Plugin for WordPress | Here is a review of Wordfence, a WordPress security : Wordfence: Security Plugin for WordPress If you find this topic interesting, you may also be interested in Expert Pen Testing or CISSP training. Cool!
PHP 5.4 Packages for Red Hat
PHP 5.4 Packages for Red Hat | Red Hat Enterprise Linux is an excellent stable distro for mission critical enterprise environments. However the PHP and MySQL versions included are a tad behind mainstream. There is a great community repository from Rackspace that offers recent PHP, MySQL, and Python versions for Red Hat. The project page is: http://iuscommunity.org For Red Hat 5 and
How to update VMware ESXi
How to update VMware ESXi | To update VMware ESXi, a patch can be easily applied at the ssh command prompt. Here is how it works! Note: make sure ssh is enabled to your ESXi server. First download the .zip patch file from the vmware website: http://www.vmware.com/patchmgr/findPatch.portal Next copy this .zip file to your ESXi installation via sftp. Make sure to
