Open Source Software and Linux:

Security


February 19, 2009  7:01 PM

Using SSL and a password to connect Sendmail to your ISP



Posted by: Xjlittle
centos, isp, openssl, password, sasl, sendmail, ssl, starttls

Many ISPs are requiring SSL and a password to connect and send mail. This how to shows how to set up your sendmail server to use SSL with a password for connecting and sending mail through your ISP. I set this up on a CentOS 5.2 virtual machine. You should have the following packages...

February 17, 2009  10:40 PM

Linux security basics aka don’t do this!



Posted by: Xjlittle
centos, Linux, red hat, Security, solaris, sysctl, windows

I mention Linux security in the title but these best practices apply to any operating system. There are many excellent 3rd party security tools out there for you to install on your system. Prior to installing these though you should review the tools that are already on your system. There is...


February 13, 2009  2:00 PM

Microsoft offers $250,000 for conviction of Conficker authors



Posted by: Xjlittle
anti-virus, antivirus, Conficker, downadup, downup, Security, worm

Microsoft has announced a $250,000 reward for the arrest and conviction of the authors of the Conficker worm, also known as Downadup. Apparently Microsoft feels that not enough is being done by Windows administrators to stop the infestation and propagation of this worm. F-Secure, an anti-virus...


February 12, 2009  1:19 AM

How secure is your network? (Part 2)



Posted by: Xjlittle
attack, breach, dos, harden, hardening, network, secure, Security

In my last post I referred to an article about the number of security breaches in networks across the U.S. This has caused...


February 11, 2009  6:47 PM

How secure is your network? (Part 1)



Posted by: Xjlittle
crackers, Firewalls, hackers, network, Security, ssh

After reading this article I began to wonder how secure my home network really is. After giving the article much thought I concluded that my home network is probably not as secure as I would want. Sure it's secure, probably above and beyond...


December 13, 2008  10:59 PM

Adding the iptables firewall to the Xen domU (part 2)



Posted by: Xjlittle
centos, dom0, domU, Firewalls, iptables, Linux, pciback, red hat, xen

In my last column we set up a physical NIC in our Xen domU to expose it to the internet and setup our iptables firewall. At this point you should have 2 interfaces in your domU. One should be facing the internet and have an IP Address assigned from your ISP. The other should be a typical Xen...


November 17, 2008  6:32 PM

Setting up your firewall on domU with iptables



Posted by: Xjlittle
centos 5, dom0, domU, domU firewall, Firewalls, iptables, pciback, xen

As discussed in an earlier post you must first hide your NIC from dom0 to set up your iptables firewall on your domU. After you have successfully hidden the NIC from dom0 then we can proceed to our domU firewall setup. You must first decide which domU that you are going to use for a firewall. ...


November 14, 2008  3:26 PM

Application Whitelisting for Window..or is it SELinux



Posted by: Xjlittle
anti-virus, Linux, malware, root kit, rootkit, Security, selinux, whitelisting

I recently read an article in eWeek that talked extensively about Application Whitelisting. The more of the article that I read this seems to be nothing more than SELinux on Windows. The Windows people are looking to lock down their machines because of the horrendous numbers of viruses, trojans...


November 8, 2008  2:59 PM

Help! root can’t login



Posted by: Xjlittle
/root, chage, Linux, passwd, password

I occasionally see the post Help! root can't login on some of the discussion boards around the net. Generally this is for two reasons. Either the account has expired or a forgotten password. The forgotten password is straightforward to fix. When booting the machine enter the grub menu. Your...


November 5, 2008  2:56 PM

Maintaining your sanity with SELinux



Posted by: Xjlittle
centos, chcon, linux security, red hat, restorecon, sealert, Security, selinux, setroubleshoot

Yes I know..everyone wants to turn off selinux. The Notes Domino people even tell you to turn off selinux before installing Domino. While this is probably a good idea for them in normal server cases it is maybe not such a good idea under normal circumstances. SeLinux is another excellent layer...


Forgot Password

No problem! Submit your e-mail address below. We'll send you an e-mail containing your password.

Your password has been sent to: