SecurityPreventing logins to a chosen sessionSession fixation attacksThere is one common denominator to all session fixation attacks and scenarios: The user logs in to a session with an attacker-chosen ID, instead of having been issued a newly generated session ID by the server. Since there seems to be no compelling reason for web applications to explicitly allow .. Hack tracking toolHack tracking toolHave a look at this link to get latest update regarding the security issues with JAVA enabled and new software released to prevent and track hackers. But the tracking tool costs $330 that too ionly for 10 users in a server. http://www.enterprisenetworkingplanet.com/netos/article.php/3513801 http://uk.builder.com/programming/java/0,39026606,39251377,00.htm Contact for Server Maintenance .. Steps to investigate hacked linux serverCheck your server is hacked or notSteps to investigate hacked linux server Check your server is hacked or not Following are the few to investigate whether the linux server is hacked or not: Follow the steps one by one and analyse or check your linux server is hacked or not. Who is on the Server: $ w $ netstat .. How to deny allow certain ip addressSecure SSH by blocking IP AddressHarden Server In the last article we have seen how to secure shell by alerting through mail. You can also harden the server by blocking the certain server IP Address or by block all the IP Address except a certain IP Address so that you can login into you shell only .. Secure sshMail alerts when someone logs into your SSHMail alerts when someone logs into your SSH You can make your ssh or shell secure by alerting yourself when someone login to your ssh. Just add any one of the shell script in your profile. Find Profile in your home directory vi /root/.bash_profile Script to secure SSH echo 'ALERT - Root Shell Access (YourserverName) .. Linux kernel rpm bugBugs in Kernel2.6.x kernel RPM BUG There is a possible bug in the 2.6.x kernels with rpm command, it may give you errors like this rpm -q glibc rpmdb: unable to join the environment error: db4 error(11) from dbenv->open: Resource temporarily unavailable error: cannot open Packages index using db3 - Resource temporarily unavailable (11) .. How to prevent hacking attacksHardening ServersHacking Attacks - Prevention Some of the main steps are discussed here to harden your server. 1. Harden your systems (also called "lock-down" or "security tightening") by » Configuring necessary software for better security » Deactivating unnecessary software - disable any daemons that aren't needed .. Error qm modules function not implementedSteps to install module-init-toolsError QM MODULES Function not implemented You would have come across the error " QM_MODULES: Function not implemented " while running the command lsmod or while restarting the apf. Have you ever thought of why you get this error 'QM_MODULES: Function not implemented'. The error is because of the latest upgradation .. Phpbb vulnerabilitiesNew phpBB WormA new phpBB Worm There have been reports of WebWorm exploting PHPBB's urldecode vulnerability. The worm uses this to create a perl script on the server and start it. After the perl script starts it wipes itself out, then begans to search via google.com/advanced_search for exploitable viewtopic.php files part from the .. Prevent server from syn flood attack using tcp syncookiesWhat is SYN flood attackPrevent server from SYN flood attack using tcp syncookies TCP syncookies functionality prevents attackers from blocking up your server by filling up the list of connections by using a clever algorithm and a little cryptography in the TCP sequence numbers. If you're using a fairly new version of Red Hat, you'll .. What is pamPluggable Authentication ModulesWhat is PAM? (Pluggable Authentication Modules) A programming interface that enables third-party security methods to be used in Unix. For example, smart cards, Kerberos and RSA technologies can be integrated with various Unix functions such as rlogin, telnet and ftp. .. |