HowtoForge - Linux Howtos and Tutorials - Security

How To Configure The AIDE (Advanced Intrusion Detection Environment) File Integrity Scanner For Your Website

Mon, 16 Aug 2010 19:28:42 +0200

How To Configure The AIDE (Advanced Intrusion Detection Environment) File Integrity Scanner For Your Website

A file integrity scanner is something you need to have. Imagine a hacker placing a backdoor on your web site, or changing your order form to email him a copy of everyone's credit card while leaving it appear to be functionally normally. By setting up daily reporting, this notifies you within, at most, 24 hours of when any file was changed, added, or removed. It also helps establish an audit trail in the event your site is compromised. These instructions are designed for an end user, where you don't need to have root access, to implement and assumes your server has the aide binary installed. Most hosts will have this installed already, or will install it for you upon request.

Chrooting Apache2 With mod_chroot On Ubuntu 10.04

Fri, 13 Aug 2010 17:25:27 +0200

Chrooting Apache2 With mod_chroot On Ubuntu 10.04

This guide explains how to set up mod_chroot with Apache2 on an Ubuntu 10.04 system. With mod_chroot, you can run Apache2 in a secure chroot environment and make your server less vulnerable to break-in attempts that try to exploit vulnerabilities in Apache2 or your installed web applications.

Chrooting Apache2 With mod_chroot On CentOS 5.4

Wed, 21 Jul 2010 17:52:58 +0200

Chrooting Apache2 With mod_chroot On CentOS 5.4

This guide explains how to set up mod_chroot with Apache2 on a CentOS 5.4 system. With mod_chroot, you can run Apache2 in a secure chroot environment and make your server less vulnerable to break-in attempts that try to exploit vulnerabilities in Apache2 or your installed web applications.

iRedOS-0.6.0: Open Source Mail Server With Postfix, Dovecot, Amavisd, ClamAV, SpamAssassin, RoundCube

Wed, 07 Jul 2010 17:36:49 +0200

iRedOS-0.6.0: Open Source Mail Server With Postfix, Dovecot, Amavisd, ClamAV, SpamAssassin, RoundCube

iRedMail is a shell script that lets you quickly deploy a Open Source Mail Server solution in less than 2 minutes. iRedOS is a customized CentOS 5.5 distribution, where e unnecessary packages were removed. It ships with the lastest version of iRedMail (iredmail0.6.0); it lets you install iredmail more quickly and smooth.

Installing Maia Mailguard On Debian Lenny (Virtual Users/Domains With Postfix/MySQL)

Tue, 06 Jul 2010 17:19:29 +0200

Installing Maia Mailguard On Debian Lenny (Virtual Users/Domains With Postfix/MySQL)

This guide explains how to install Maia Mailguard, a spam and virus management system, on a Debian Lenny mailserver. Maia Mailguard is a web-based interface and management system based on the popular amavisd-new email scanner and SpamAssassin. Written in Perl and PHP, Maia Mailguard gives end-users control over how their mail is processed by virus scanners and spam filters, while giving mail administrators the power to configure site-wide defaults and limits.

Chrooting Apache2 With mod_chroot On OpenSUSE 11.2

Fri, 02 Jul 2010 17:36:00 +0200

Chrooting Apache2 With mod_chroot On OpenSUSE 11.2

This guide explains how to set up mod_chroot with Apache2 on an OpenSUSE 11.2 system. With mod_chroot, you can run Apache2 in a secure chroot environment and make your server less vulnerable to break-in attempts that try to exploit vulnerabilities in Apache2 or your installed web applications.

How To Integrate ClamAV Into PureFTPd For Virus Scanning On Mandriva 2010.0

Mon, 28 Jun 2010 16:44:27 +0200

How To Integrate ClamAV Into PureFTPd For Virus Scanning On Mandriva 2010.0

This tutorial explains how you can integrate ClamAV into PureFTPd for virus scanning on a Mandriva 2010.0 system. In the end, whenever a file gets uploaded through PureFTPd, ClamAV will check the file and delete it if it is malware.

Virtual Users And Domains With Postfix, Courier, MySQL And SquirrelMail (Fedora 13 x86_64)

Sun, 27 Jun 2010 18:55:59 +0200

Virtual Users And Domains With Postfix, Courier, MySQL And SquirrelMail (Fedora 13 x86_64)

This document describes how to install a mail server based on Postfix that is based on virtual users and domains, i.e. users and domains that are in a MySQL database. I'll also demonstrate the installation and configuration of Courier (Courier-POP3, Courier-IMAP), so that Courier can authenticate against the same MySQL database Postfix uses.

How To Integrate ClamAV Into PureFTPd For Virus Scanning On CentOS 5.4

Wed, 16 Jun 2010 17:29:27 +0200

How To Integrate ClamAV Into PureFTPd For Virus Scanning On CentOS 5.4

This tutorial explains how you can integrate ClamAV into PureFTPd for virus scanning on a CentOS 5.4 system. In the end, whenever a file gets uploaded through PureFTPd, ClamAV will check the file and delete it if it is malware.

Virtual Users And Domains With Postfix, Courier, MySQL And SquirrelMail (Ubuntu 10.04)

Tue, 08 Jun 2010 17:26:51 +0200

Virtual Users And Domains With Postfix, Courier, MySQL And SquirrelMail (Ubuntu 10.04)

Fight Image Spam With FuzzyOCR And SpamAssassin On Fedora 12

Mon, 07 Jun 2010 17:10:37 +0200

Fight Image Spam With FuzzyOCR And SpamAssassin On Fedora 12

This tutorial describes how to scan emails for image spam with FuzzyOCR on a Fedora 12 server. FuzzyOCR is a plugin for SpamAssassin which is aimed at unsolicited bulk mail containing images as the main content carrier. Using different methods, it analyzes the content and properties of images to distinguish between normal mails (ham) and spam mails. FuzzyOCR tries to keep the system load low by scanning only mails that have not already been categorized as spam by SpamAssassin, thus avoiding unnecessary work.

New Features In Firewall Builder 4.0

Mon, 10 May 2010 16:51:03 +0200

New Features In Firewall Builder 4.0

Firewall Builder 4.0 is a major upgrade, it adds many improvements across all components of the program. To name a few, it adds support for the high availability firewall configurations; improves the way generated script manages IP addresses and adds ability to manage VLAN, bridge and bonding interfaces; the GUI now has undo/redo facility of unlimited depth and can compile a single rule and immediately show the result. There are many other improvements and changes, all listed in the Firewall Builder 4.0 Release Notes.

Syslog Better Logging Tutorial

Thu, 06 May 2010 16:13:24 +0200

Syslog Better Logging Tutorial

Syslog is a powerful tool, but only if you can actually use it. This guide will go over the basics of syslog and provide you with a much more powerful default configuration.

How To Integrate ClamAV Into PureFTPd For Virus Scanning On OpenSUSE 11.2

Sun, 02 May 2010 18:45:59 +0200

How To Integrate ClamAV Into PureFTPd For Virus Scanning On OpenSUSE 11.2

This tutorial explains how you can integrate ClamAV into PureFTPd for virus scanning on an OpenSUSE 11.2 system. In the end, whenever a file gets uploaded through PureFTPd, ClamAV will check the file and delete it if it is malware.

Fight Image Spam With FuzzyOCR And SpamAssassin On Debian Lenny

Tue, 27 Apr 2010 17:36:24 +0200

Fight Image Spam With FuzzyOCR And SpamAssassin On Debian Lenny

This tutorial describes how to scan emails for image spam with FuzzyOCR on a Debian Lenny server. FuzzyOCR is a plugin for SpamAssassin which is aimed at unsolicited bulk mail containing images as the main content carrier. Using different methods, it analyzes the content and properties of images to distinguish between normal mails (ham) and spam mails. FuzzyOCR tries to keep the system load low by scanning only mails that have not already been categorized as spam by SpamAssassin, thus avoiding unnecessary work.