Entries Related to ‘Security’

Learn how to employ some of Apache’s most useful and effective modules to restrict access to your Apache-powered website.

Here’s how to create a simple, secure proxy server for your enterprise using Squid, ClamAV, and other open source applications.

OpenVPN provides a secure link back to your network for remote workers. Carla Schroder walks you through the process of setting up an OpenVPN server to authenticate and encrypt multiple client connections in less time than it takes to get a key made – almost.

Many network administrators know OpenSSL as a tool that implements Secure Sockets Layer (SSL) and Transport Layer Security (TLS) cryptographic protocols to secure your web surfing and email. But as we learned earlier this month, OpenSSL can do far more. With OpenSSL you can encrypt and decrypt files, verify file integrity, and see which encryption protocols and ciphers any server supports.

ModSecurity is a free, open source Apache module that acts as web application firewall (WAF). Its rich features, strong community, and optional commercial support make it a must for any production Apache web server that serves non-static content and requires auditing.

OpenSSL, the open source toolkit for implementing the Secure Sockets Layer (SSL) and Transport Layer Security (TLS) protocols, is an everyday essential for most Linux admins responsible for secure networking. But OpenSSL includes a wealth of features that even grizzled veterans may not be familiar with. You can use OpenSSL to test POP and IMAP servers, and test server connection speeds, among other interesting tricks.

Snort, the open source intrusion detection and prevention system, is immensely powerful, but to get the most out of it, you need to configure it correctly for your own setup. Here are some performance tips for dealing well with alerts, looking at alert monitoring, streamlining false positives and genuine but frequent real positives, and logical rule optimization.

Snort, the open source intrusion detection and prevention system (IDS/IPS), can be a fabulous tool to protect your network from attack – if it’s set up correctly. If it’s not, it can cause network traffic and performance problems. Here’s a rundown of how to use Snort’s built-in profiling tools to tune your setup and improve Snort’s performance.

BackTrack Linux has established itself as the de facto suite of choice for security professionals and administrators who want to find any possible holes in their servers, systems, and networks. This bootable Linux distro includes a complete set of tools that can help you not only assess the security of your system but also aid in uncovering possible break-ins, making it an essential part of any administrator’s toolkit.

Installing and maintaining a secure web server on Linux can be a challenge. It requires in-depth knowledge of Linux, Apache, and PHP server-side options. One of the main problems is to find the balance between security and productivity and usability. The best solution depends on the specific project requirements, but all installations share certain common characteristics. Here are some best practices for securing a LAMP server, from the server configuration to fine-tuning PHP settings.