Change sudo default password cache | sudo’s default password cache time is 5 minutes. To change the default time, it is possible to edit a setting in /etc/sudoers as desired. I’ll show you how! Edit /etc/sudoers with your desired text editor, or as standard with sudo visudo: $ sudo visudo For example, to increase the timeout to 30 minutes for user
Combine apt-get update and apt-get upgrade in one command
Combine apt-get update and apt-get upgrade in one command | On Ubuntu or Debian, it is possible to make a small bash one-liner to fully update the host with one simple command. I’ll show you how! 1. Create a file called ‘update’ in /usr/local/bin: $ sudo nano /usr/local/bin/update 2. Type the following for the file contents, then save with Control+X. #!/bin/bash sudo apt-get update &&
A Closer Look at WordPress Password Hashes
A Closer Look at WordPress Password Hashes | Check out this write up on WordPress password hashes: A Closer Look at WordPress Password Hashes If you find this topic interesting, you may also be interested in Expert Pen Testing or CISSP training. Check it out!
Suse | sudo asks for root password
Suse | sudo asks for root password | By default, the sudo command on Suse Linux asks for the root password instead of the user’s password. I’ll show you how to fix that to be more expected (and secure!) behavior of sudo and only ask for the user’s password. 1. Crack open a terminal, and issue: $ sudo visudo 2. Comment out the
Start eth0 at boot Red Hat | CentOS
Start eth0 at boot Red Hat | CentOS | To have eth0 start at boot, edit the following file: $ sudo nano /etc/sysconfig/network-scripts/ifcfg-eth0 Change ONBOOT to “yes” DEVICE=”eth0″ BOOTPROTO=”dhcp” HWADDR=”08:00:27:CE:54:D9″ NM_CONTROLLED=”yes” ONBOOT=”yes” Done!
linuxlifecycle.com | Support Life Cycles for Enterprise Linux Distributions
linuxlifecycle.com | Support Life Cycles for Enterprise Linux Distributions | Presenting linuxlifecycle.com! A simple clear site which displays the current support cycle or life cycle of major Linux distributions. http://linuxlifecycle.com Corrections and feedback welcome,
Create HTML Reports with Nikto Web Server Scanner
Create HTML Reports with Nikto Web Server Scanner | The open source web server scanner Nikto can create excellent HTML reports. I’ll show you how! In your nikto scan options, use tack capital F htm to signify the output format as html. Below is an example command: $ nikto -h example.com -Display V -F htm -output niktoscan.html Click to view an example HTML report
Protect Against XSS by Enabling HttpOnly for Linux Apache PHP
Protect Against XSS by Enabling HttpOnly for Linux Apache PHP | HttpOnly is a session cookie flag created to protect against cross site scripting and theft of session cookies. For good security, this should be enabled for PHP running under Apache especially for sites such as WordPress, Drupal, Joomla, and other popular PHP-based web applications. OWASP has some information on HttpOnly. I’ll show you how to
How to Install OSSEC on Red Hat or CentOS 6
How to Install OSSEC on Red Hat or CentOS 6 | OSSEC is an open source centralized log monitoring and notification system. OSSEC is often used to meet PCI Compliance central logging and intrusion monitoring requirements with a free and self-managed solution. OSSEC monitors all types of logs such as syslog, apache, maillogs, mysql logs, ftp logs, cisco IOS logs, and more. I’ll show you how
Ubuntu Server MOTD Include Security Updates
Ubuntu Server MOTD Include Security Updates | Ubuntu Server can display outstanding package and security updates as the MOTD when logging in locally or via ssh. I’ll show you how! To enable this feature, install the following package: $ sudo apt-get install update-notifier-common The terminal output will look as below: $ ssh user@example.com Linux example.com 3.0.18-linode43 #1 SMP Mon Jan 30 11:44:09
