scottlinux.com | Linux Blog

Facebook Twitter RSS
formats

Change sudo default password cache

Published on August 4, 2012, by + in linux, sysadmin.
terminal

Change sudo default password cache | sudo’s default password cache time is 5 minutes. To change the default time, it is possible to edit a setting in /etc/sudoers as desired. I’ll show you how! Edit /etc/sudoers with your desired text editor, or as standard with sudo visudo: $ sudo visudo For example, to increase the timeout to 30 minutes for user

formats

Linux Security Weekly | 010

Published on July 29, 2012, by + in podcast.
Linux Security Weekly

Linux Security Weekly | 010 | Hello and welcome to Linux Security Weekly for July 29 2012. Linux Security Weekly is the audio podcast which covers current and important security vulnerabilities in Linux and open source software for the past week. Show Notes: Mod Security 2.7 (2.7.0-RC2) http://blog.spiderlabs.com/2012/07/announcing-the-availability-of-modsecurity-extension-for-iis.html http://blog.spiderlabs.com/2012/07/beyond-apache-modsecurity-for-iisnginx.html http://modsecurity.org/download/ Wireshark http://www.wireshark.org/news/20120722.html Red Hat bind – RHEL 4 http://rhn.redhat.com/errata/RHSA-2012-1110.html bind

formats

A Closer Look at WordPress Password Hashes

Published on July 26, 2012, by + in sysadmin.
infosec_institute

A Closer Look at WordPress Password Hashes | Check out this write up on WordPress password hashes: A Closer Look at WordPress Password Hashes If you find this topic interesting, you may also be interested in Expert Pen Testing or CISSP training. Check it out!

formats

Suse | sudo asks for root password

Published on July 25, 2012, by + in linux, sysadmin.
opensuse-logo

Suse | sudo asks for root password | By default, the sudo command on Suse Linux asks for the root password instead of the user’s password. I’ll show you how to fix that to be more expected (and secure!) behavior of sudo and only ask for the user’s password. 1. Crack open a terminal, and issue: $ sudo visudo 2. Comment out the

formats

Linux Security Weekly | 009

Published on July 22, 2012, by + in podcast.
Linux Security Weekly

Linux Security Weekly | 009 | Hello and welcome to Linux Security Weekly for July 22, 2012. Linux Security Weekly is the audio podcast which covers current and important security vulnerabilities in Linux and open source software for the past week. Show Notes: PHP 5.4.5 and PHP 5.3.15 released http://www.php.net/archive/2012.php#id2012-07-19-1 Firefox and Thunderbird 14.0.1 and 10.0.6 for ESR http://www.mozilla.org/en-US/firefox/14.0.1/releasenotes/ https://www.mozilla.org/security/known-vulnerabilities/firefox.html

formats

Linux Security Weekly | 008

Published on July 15, 2012, by + in podcast.
Linux Security Weekly

Linux Security Weekly | 008 | Hello and welcome to Linux Security Weekly for July 15, 2012. Linux Security Weekly is the audio podcast which covers current and important security vulnerabilities in Linux and open source software for the past week. Show Notes: CentOS 6.3 released http://lists.centos.org/pipermail/centos-announce/2012-July/018706.html http://wiki.centos.org/Manuals/ReleaseNotes/CentOS6.3 Chrome Browser 20.0.1132.57 http://googlechromereleases.blogspot.com/2012/07/stable-channel-update.html mysql updates coming https://bugzilla.redhat.com/show_bug.cgi?id=832540 Red Hat kernel updates

formats

linuxlifecycle.com | Support Life Cycles for Enterprise Linux Distributions

Published on July 14, 2012, by + in linux, sysadmin.
linux

linuxlifecycle.com | Support Life Cycles for Enterprise Linux Distributions | Presenting linuxlifecycle.com! A simple clear site which displays the current support cycle or life cycle of major Linux distributions. http://linuxlifecycle.com Corrections and feedback welcome,

formats

Create HTML Reports with Nikto Web Server Scanner

Published on July 12, 2012, by + in linux, sysadmin.
nikto

Create HTML Reports with Nikto Web Server Scanner | The open source web server scanner Nikto can create excellent HTML reports. I’ll show you how! In your nikto scan options, use tack capital F htm to signify the output format as html. Below is an example command: $ nikto -h example.com -Display V -F htm -output niktoscan.html Click to view an example HTML report

formats

Protect Against XSS by Enabling HttpOnly for Linux Apache PHP

Published on July 8, 2012, by + in linux, sysadmin.
php-logo

Protect Against XSS by Enabling HttpOnly for Linux Apache PHP | HttpOnly is a session cookie flag created to protect against cross site scripting and theft of session cookies. For good security, this should be enabled for PHP running under Apache especially for sites such as WordPress, Drupal, Joomla, and other popular PHP-based web applications. OWASP has some information on HttpOnly. I’ll show you how to

formats

How to Install OSSEC on Red Hat or CentOS 6

Published on July 8, 2012, by + in linux, sysadmin.
ossec

How to Install OSSEC on Red Hat or CentOS 6 | OSSEC is an open source centralized log monitoring and notification system. OSSEC is often used to meet PCI Compliance central logging and intrusion monitoring requirements with a free and self-managed solution. OSSEC monitors all types of logs such as syslog, apache, maillogs, mysql logs, ftp logs, cisco IOS logs, and more. I’ll show you how

Home Posts tagged "security" (Page 5)

© Copyleft scottlinux.com CC BY-SA 3.0 | Powered by Linode!