headers
Peter Odigie | 27 Mar 2013 20:27
Picon

secure and simple file server

Hi All!

I will like to get your suggestions.

I have been asked to set up a file server on a windows OS not using
any active directory stuff. Just a simple file sharing stuff in which:

Person A will be the only one to put a file into Folder A but will
also be able to get files from Folder B & C. And the same will hold
for person B and person C - a folder can only be edited by a
particular person/group but all can access and get files from it.

My question is how will one implement this securely, making sure
person B cannot edit files in folder A for example.

I am open to commercial, opensource & windows-native implementations.

Thanks!

Peter

------------------------------------------------------------------------
Securing Apache Web Server with thawte Digital Certificate
In this guide we examine the importance of Apache-SSL and who needs an SSL certificate.  We look at how SSL
works, how it benefits your company and how your customers can tell if a site is secure. You will find out how
to test, purchase, install and use a thawte Digital Certificate on your Apache web server. Throughout,
best practices for set-up are highlighted to help you ensure efficient ongoing management of your
encryption keys and digital certificates.

http://www.dinclinx.com/Redirect.aspx?36;4175;25;1371;0;5;946;e13b6be442f727d1
(Continue reading)

Permalink | Reply | 2 comments |
headers
Arpita Gavshinde | 8 Feb 2013 13:24

Question about passwd file (Linux)

security-basics <at> securityfocus.comHi all,

I have a question about passwd file in Linux where when 'x' for a particular user is deleted from /etc/passwd
file, system doesnot ask for password to log into the system. But when pasword is set again for that user
again, then instead of showing 'x' in /etc/passwd file, MD5 hash of new password is shown. Why is it so ?

Thanks in advance

Confidentiality: This e-mail and any attachments may be confidential and may also be privileged. If you
are not an intended named recipient, please notify the sender immediately and do not disclose the
contents to another person use it for any purpose, or store or copy the information in any medium.

------------------------------------------------------------------------
Securing Apache Web Server with thawte Digital Certificate
In this guide we examine the importance of Apache-SSL and who needs an SSL certificate.  We look at how SSL
works, how it benefits your company and how your customers can tell if a site is secure. You will find out how
to test, purchase, install and use a thawte Digital Certificate on your Apache web server. Throughout,
best practices for set-up are highlighted to help you ensure efficient ongoing management of your
encryption keys and digital certificates.

http://www.dinclinx.com/Redirect.aspx?36;4175;25;1371;0;5;946;e13b6be442f727d1
------------------------------------------------------------------------
Permalink | Reply | 5 comments |
headers
Ansgar Wiechers | 2 Feb 2013 11:46
Favicon

Re: Linux Web Server Hardening (LAMP + Wiki)

On 2013-02-02 Alex Dolan wrote:
> On 01/02/2013 3:35 PM, "Ansgar Wiechers" <bugtraq <at> planetcobalt.net> wrote:
>> M-hm, I see. May I humbly request that this troll be removed from the
>> list?
>
> I don't think removed from the list is necessary.
> He went about it poorly in his initial reply, but makes some intriguing
> points in the follow up.

Actually, no, he doesn't. While it's true that X11 does have security
issues, nobody in his right mind would be running X11 on a server
(particularly not on an internet-facing one), because this fact is
already well-known. Besides, if X11 is the issue, the BSDs (or any other
Unix flavor) would be affected just the same.

> I'm new in security so I'm keen to take in as much information as
> possible, and trying not to be a one-eyed Linux user

Don't misunderstand. This isn't a debate pro-Linux or anti-BSD or
something. I'm merely pointing out that Mr. Furman is spreading FUD,
nothing more.

Regards
Ansgar Wiechers
--

-- 
"All vulnerabilities deserve a public fear period prior to patches
becoming available."
--Jason Coombs on Bugtraq

------------------------------------------------------------------------
(Continue reading)

Permalink | Reply | 2 comments |
headers
Daniel Armbrust | 31 Jan 2013 16:23
Picon

Prevent DoS (Linux+Apache+Jboss)

Hi folks,

   What is the best way to prevent huge access to a web application ?
   This is a Java Application running on Jboss 5. The Operating System
is a RedHat Linux Box with 4 GB of Ram. 
   Always, we find in access_log a lots of requests. These high requests
increase the "load average" of the server
until its freezes.

   Normally, we pick up the "Bad IP" from access_log and make a simple
IPTables rule, like that:

  /sbin/iptables -A INPUT -s <IP> -p tcp --syn -m connlimit
--connlimit-above 5 -j REJECT --reject-with tcp-reset

   There is another best way ???
   Thanks so much.

Regards
Daniel Armbrust.

------------------------------------------------------------------------
Securing Apache Web Server with thawte Digital Certificate
In this guide we examine the importance of Apache-SSL and who needs an SSL certificate.  We look at how SSL
works, how it benefits your company and how your customers can tell if a site is secure. You will find out how
to test, purchase, install and use a thawte Digital Certificate on your Apache web server. Throughout,
best practices for set-up are highlighted to help you ensure efficient ongoing management of your
encryption keys and digital certificates.

http://www.dinclinx.com/Redirect.aspx?36;4175;25;1371;0;5;946;e13b6be442f727d1
(Continue reading)

Permalink | Reply | 2 comments |
headers
Hafez Kamal | 1 Feb 2013 02:42

[HITB-Announce] #HITB2013AMS FINAL CALL for Paper Submissions

Hi everyone - This is the FINAL CALL for paper submissions for the 4th
annual HITB Security Conference in Amsterdam, #HITB2013AMS. We're
looking for talks that are highly technical, but most importantly,
material which is new and cutting edge.

Submissions are due BEFORE 8th Feb 23:59 CET

HITB CFP: http://cfp.hackinthebox.org/

---

#HITB2013AMS takes place at the Okura Hotel in Amsterdam from the 8th
till the 11th of April. We kick off as always with two-days of hands
on technical trainings (8th and 9th).

We then continue with a triple track conference with keynotes by Eddie
Schwartz, Chief Information Security Officer at RSA and Bob Lord,
Chief Security Officer at Twitter. The closing keynote will be
presented by Winn Schwartau.

Event Website: http://conference.hitb.org/

===

Each accepted submission will entitle the speaker(s) to
accommodation for 3 nights / 4 days and travel expense reimbursement
up to EUR1200.00 per speaking slot.

Topics of interest include, but are not limited to the following:
(Continue reading)

Permalink | Reply | 0 comments |
headers
en | 31 Jan 2013 12:23

[PenTest-Announce] Phishing Attack with Social Engineering Toolkit (SET)

A new issue of PenTest Regular has just been released.

See what articles you will find inside:

- Phishing Attack with Social Engineering Toolkit (SET)
- Input Filter – Restrictions, Service Validation Evasion & Bypass Methods (Part#1)
- Security of Enterprise Wireless Networks
- Android as a PenTesting Platform
- Biometrics: Are They Enterprise Ready?
- Setting up a Virtual Environment For Testing
- Virtualization Risk
- PenTest: Why You Should Care About Ransomware
- Interview with Precise Biometrics

Here you can read more, as well as download the free teaser:
http://pentestmag.com/pentest-regular-0113/

For any inquiries related to this issue or Magazine in general, please mail us at:
en <at> pentestmag.com

Warm regards,
PenTestMag Team

------------------------------------------------------------------------
Securing Apache Web Server with thawte Digital Certificate
In this guide we examine the importance of Apache-SSL and who needs an SSL certificate.  We look at how SSL
works, how it benefits your company and how your customers can tell if a site is secure. You will find out how
to test, purchase, install and use a thawte Digital Certificate on your Apache web server. Throughout,
best practices for set-up are highlighted to help you ensure efficient ongoing management of your
encryption keys and digital certificates.
(Continue reading)

Permalink | Reply | 0 comments |
headers
sec milis | 30 Jan 2013 04:39
Picon

Bad Antivirus

Dear folks,

I have 3 W2K3 servers, each are running same software binary exe
files. One month ago, they infected with some rootkits and viruses
which later on I know from antivirus detection this malware called
sality, ipz, etc.
After installing a new antivirus and revealed the malware, some of my
software seems not running as expected. At the moment, I suspect that
the malware still there because the AV may not capable to clean them
all. I tried using 3 or 4 most popular AV, but all were claimed the
servers are clean while my software couldn't run smoothly. In fact,
some of exe files has been changed in size while I am not sure whether
this changed made by viruses or 'bad' AV I just installed.
If I try to proof that my exe files has been changed by this 'bad' AV,
does anyone know how to proof this things ? By reversing this exe
files, is it possible to get which part of the files has changed ?

Thank's

Ibha ID

------------------------------------------------------------------------
Securing Apache Web Server with thawte Digital Certificate
In this guide we examine the importance of Apache-SSL and who needs an SSL certificate.  We look at how SSL
works, how it benefits your company and how your customers can tell if a site is secure. You will find out how
to test, purchase, install and use a thawte Digital Certificate on your Apache web server. Throughout,
best practices for set-up are highlighted to help you ensure efficient ongoing management of your
encryption keys and digital certificates.

http://www.dinclinx.com/Redirect.aspx?36;4175;25;1371;0;5;946;e13b6be442f727d1
(Continue reading)

Permalink | Reply | 1 comment |
headers
sec.melis | 29 Jan 2013 16:30
Picon

Bad Antivirus

Dear folks,

I have 3 W2K3 servers, each are running same software binary exe files. One month ago, they infected with
some rootkits and viruses which later on I know from antivirus detection this malware called sality, ipz, etc.
After installing a new antivirus and revealed the malware, some of my software seems not running as
expected. At the moment, I suspect that the malware still there because the AV may not capable to clean them
all. I tried using 3 or 4 most popular AV, but all were claimed the servers are clean while my software
couldn't run smoothly. In fact, some of exe files has been changed in size while I am not sure whether this
changed made by viruses or 'bad' AV I just installed.
If I try to proof that my exe files has been changed by this 'bad' AV, does anyone know how to proof this things ?
By reversing this exe files, is it possible to get which part of the files has changed ?

Thank's

Ibha ID
Sent from my BlackBerry® smartphone from Sinyal Bagus XL, Nyambung Teruuusss...!
Permalink | Reply | 18 comments |
headers
Jeffrey Walton | 25 Jan 2013 22:31
Picon

Linux Web Server Hardening (LAMP + Wiki)

Hi All,

Is anyone aware of a hardening guide for a Linux LAMP server with a
Wiki component?

I have an older Linux Server hardening book, but nothing recent. I
have not seen a Wiki hardening document.

Thanks in advance,

Jeff

------------------------------------------------------------------------
Securing Apache Web Server with thawte Digital Certificate
In this guide we examine the importance of Apache-SSL and who needs an SSL certificate.  We look at how SSL
works, how it benefits your company and how your customers can tell if a site is secure. You will find out how
to test, purchase, install and use a thawte Digital Certificate on your Apache web server. Throughout,
best practices for set-up are highlighted to help you ensure efficient ongoing management of your
encryption keys and digital certificates.

http://www.dinclinx.com/Redirect.aspx?36;4175;25;1371;0;5;946;e13b6be442f727d1
------------------------------------------------------------------------
Permalink | Reply | 29 comments |
headers
Grzegorz Dlugajczyk | 23 Jan 2013 22:39
Picon
Favicon

RE: Network Segregation to prevent spread of malware


Hi there, 

You can avoid Malware spreading from one network segment to another by using the following approach:
- remotely accessing a separate user environment such as another desktop stored in a less trusted or more
isolated area of the network from which users can access the web. It can be implemented by using Citrix to
directly access separate user environments
- remotely accessing an application directly from the internal network. The remote application runs in
the less trusted environment, however, the user accesses it from their normal corporate desktop.

The key point with both options is that users do not store or process potentially malicious information
directly from their corporate desktop. Each user provides input to the remote application or desktop
and, if required, output is sent back to the user through a sufficiently structured and limited
capability that prevents malware or potentially malicious content from executing or propagating
throughout one network segment to another.
One of the important controls when implementing this type of segregation is to ensure that untrusted web
browsing environments are non-persistent and regularly patched & fixed. That is, if the web browsing
environment becomes compromised with malware, the infection is quickly removed when the user completes
their web browsing session. 

Common examples of systems that enable this type of functionality include separate desktop
& application virtualisation like Citrix XenApp, VMware ThinApp, Microsoft App-V, etc.

Regards,
Grzegorz

> Date: Tue, 22 Jan 2013 17:33:05 +0000
> From: tomright006 <at> gmail.com
> To: security-basics <at> securityfocus.com
> Subject: Network Segregation to prevent spread of malware
(Continue reading)

Permalink | Reply | 0 comments |
headers
tomright006 | 22 Jan 2013 18:33
Picon

Network Segregation to prevent spread of malware

Hello All,

I need few tips on Network Segregation to prevent spread of Malware. Can I avoid Malware spreading from one
network segment to another just by segregating network with access list or firewalls?

Thanks,

Tom

------------------------------------------------------------------------
Securing Apache Web Server with thawte Digital Certificate
In this guide we examine the importance of Apache-SSL and who needs an SSL certificate.  We look at how SSL
works, how it benefits your company and how your customers can tell if a site is secure. You will find out how
to test, purchase, install and use a thawte Digital Certificate on your Apache web server. Throughout,
best practices for set-up are highlighted to help you ensure efficient ongoing management of your
encryption keys and digital certificates.

http://www.dinclinx.com/Redirect.aspx?36;4175;25;1371;0;5;946;e13b6be442f727d1
------------------------------------------------------------------------
Permalink | Reply | 15 comments |

Gmane