Check Apache Permissions | How can I check Apache permissions for world writeable files or directories? You can use the find command to check for 777 (world writeable) directories and files. This command searches for directories that are 777 in /var/www/: sudo find /var/www/ -type d -perm -002 And this command searches for files that are 777 in /var/www/:
Disable Guest Access – Samba
Disable Guest Access – Samba | Samba by nature has guest access for various purposes. However, you can disable guest access to prevent anonymous browsing and tighten security overall. 1. Edit the smb.conf file: $ sudo nano /etc/samba/smb.conf Add this line to the [global] section: restrict anonymous = 2 2. Close and save the file. Then restart samba. This will restart
Ubuntu Linux Disable Autorun
Ubuntu Linux Disable Autorun | How do I disable autorun in Ubuntu Linux? As in recent news, Linux on the Desktop is vulnerable to autorun attacks via a specially crafted USB flash drive. You can help to make your Linux Desktop safer by disabling autorun for removable media. In Ubuntu, open up a terminal (Applications > Accessories > Terminal). In
Generate Strong Passwords
Generate Strong Passwords | How can I generate strong passwords from the command line? The excellent program apg is fantastic for generating all sorts of passwords. 1. Install apg: $ sudo apt-get install apg 2. Then you can simply run $ apg …which will run default options and give something like this: stmiller@li166-66:~$ apg Please enter some random data
Thunderbird Recover Email Password
Thunderbird Recover Email Password | How do I recover saved passwords from Thunderbird? Finding saved email passwords in Thunderbird is as easy as going to the Security portion of the settings: Tools -> Options (Windows) | Edit -> Preferences (Linux) | Thunderbird -> Preferences (OS X) -> Security > Passwords > Saved Passwords There you are given an option to
Tiger Local Security Audit
Tiger Local Security Audit | Tiger is an excellent local Linux (*nix) system security audit tool. sudo apt-get install tiger Then run: sudo tiger Tiger checks various things such as all user accounts on the machine, problematic cron and service entries, complete system file permission check, rootkits, backdoors, (Debian/Ubuntu example: complete md5sum of installed files against Debian Security Advisories), listening
CentOS Yum Automatic Updates
CentOS Yum Automatic Updates | How to set CentOS to use automatic updates 1. yum install yum-cron 2. chkconfig yum-cron on 3. /etc/init.d/yum-cron start That’s it! This job will run when regular cron.daily tasks are scheduled to run as specified in /etc/crontab.
Quick Hping How-To
Quick Hping How-To | hping is an excellent networking tool that can be used to send a crafted packet over a specific port to test firewall settings. In this example, I’ll show you how to do quick firewall port testing using hping3. First, install hping! Ubuntu has the latest hping3: sudo apt-get install hping3 Ok, now let’s send a
Nikto Web Server Scanner
Nikto Web Server Scanner | Everyone knows the greatness of nmap, but another useful tool is nikto! Nikto is available in Ubuntu 10.10 multiverse, as well as in the latest Fedora. Install it as usual: sudo apt-get install nikto or yum install nikto Now, update nikto to the latest scanning vulnerabilities by issuing: sudo nikto -update Then, run nikto -h
