Security :: Define An Appliance Based On Suse For An Application Server And Web Server Apache - Best Network And Security?

Feb 6, 2010

We are trying to define an appliance based on Suse for an application server and Web server Apache, so we would like to know configuration best practices for network and security, is there any paper/doc about best practices?

View 3 Replies


ADVERTISEMENT

Server :: File System Type For An Application Server Appliance?

Feb 8, 2010

We are trying to define an appliance for an application server so I would like to know which should be the best file system type for this kind of use, basically our web applications uses libraries of 50 KB and our web apps.creates temp and logs files not bigger than 3 MB.

View 1 Replies View Related

Security :: Network Appliance Shipped To Customer Premises ?

Nov 2, 2010

We make network appliances for process control. The owners and operators are not supposed to open them. But they can.

For unrelated reasons, we put our homegrown software onto a USB that is inserted into the appliance. To keep prying eyes off it, we encrypt it. The key is on the appliance internal drive, which can be removed and mounted elsewhere by enterprising IP thief, who can then find the key to the encrypted USB drive.

Any ideas for closing this vector down?

For casual snoopers, we have password protected grub.

Calling cadillackid: would be very pleased to hear about your approach to locking down devices sent to remote premises.

View 9 Replies View Related

Security :: Install Based AntiVirus Server With Windows Clients?

Apr 1, 2010

I would like to install Linux based AntiVirus Server with Windows Clients. As per the existing setup, all Windows machines are using "demo" or "evaluation" copy of antivirus & all antivirus softwares are not same on all windows computers.

Someone is using Trend-Micro ,other is using Avast. Due to above listed problem,i want to implement Linux Based Free AntiVirus Server,which will be connected directly on the internet. The Linux AntiVirus server will updated it's database from Internet automatically.

Inside the Linux Server,all Windows PC's are connected in a same Local Area Connection. All windows XP computers will fetch the updated data from the Anti Virus Server. Also,i am searching MAIL RESPONDER OR POP UP Windows,when any virus found on any client machine. My company needs Cost Effective solution & Linux is the best solution for this.

View 1 Replies View Related

OpenSUSE :: SUSE Server Applications And Security?

Jun 13, 2011

I see that the PHP5 version in the official repository (OSS) is outdated and dangerous to use. I can't find a newer version in the official update repo either.

View 6 Replies View Related

Ubuntu :: Security Risk To Run Apache Web Server On Laptop?

Sep 29, 2010

I am running Ubuntu 10.04 on my laptop. I have an Apache web server running that I can access at 192.168.1.102 ("It works! This is the default web page for this server. ...").

Are there any security risks in leaving this running? Is the web server available to anyone outside my network?

View 2 Replies View Related

Ubuntu Security :: Need Daemon Running Apache Server?

Apr 5, 2011

I'm trying to modify an existing user so that any files they create can be at least read (although writing and execution would be nice) by any other user. The reason is because I need the daemon running my Apache server to be able to access files created by a daemon running under this user, files which will be created and accessed in real-time.

View 3 Replies View Related

Ubuntu Security :: Ways To Secure Server Setup With Apache?

Jun 19, 2010

I've set up a server for the first time today and I'm reading up on how to secure it. But I was wondering if anyone here would give me some tips from personal experience on what to do before going online with my website for the whole world to see. I'm running Ubuntu Server edition and Apache. Am I good to go with default settings or is there anything recommended that I should first do?

View 9 Replies View Related

Security :: Where To Put VPN Appliance?

Feb 3, 2010

I will soon have a setup consisting of a firewall with 1 WAN interface, and 2 LAN interfaces. One will be a DMZ (With ports forwarded to some servers from the WAN interface), and the other an internal LAN.

Now, I wish to install an OpenVPN appliance, so that i can access my internal network remotely. I'm just a bit confused *where* to place the appliance..

The point of me splitting up the 2 LANs was to avoid port forwarding onto the internal network...

View 2 Replies View Related

Security :: Law Enforcement Appliance Subverts SSL?

Mar 29, 2010

Quote: The boxes were designed to intercept those communications without breaking the encryption by using forged security certificates, instead of the real ones that websites use to verify secure connections. To use the appliance, the government would need to acquire a forged certificate from any one of more than 100 trusted Certificate Authorities.

Complete Article It seems like the EFF is still trying to figure what the best way to protect against this sort of attack is. The idea they kicked around about using the Tor network to compare certificates in other geographical locations seems kinda clumsy to me, though. Surely they've got a better approach brewing. How about you guys? Any thoughts to share?

View 5 Replies View Related

Server :: Performance Tunning Of Apache-tomcat And Jboss Application Server?

Jul 2, 2010

Can anyone tell me in performance tunning of apache-tomcat and jboss application server?when I deploy some application in apache-tomcat the performance is say 100 users per second and incase of jboss it is even worst (35-40 users per second)i want to improve my performance 1000 uesrs per second..

View 1 Replies View Related

Security :: SonicWall Firewall Or Appliance Open Ports NMAP?

Mar 17, 2011

I am trying to understand why when running nmap against a SonicWALL firewall at a remote location, the SonicWall firewall is saying that most of its 65535 ports are open? I know this cant be correct and remember reading about how some of these network appliances are setup this way to thwart off attacks.

View 7 Replies View Related

Ubuntu Security :: Installing LAMP Server On Laptop - Security?

May 8, 2011

I'm concerned about security of having a LAMP server on my laptop as having any server makes the system less secure. However, if I were to create a new partition and install a lamp server on that and only use it when offline, would the security of my main partition be affected at all?

View 3 Replies View Related

Ubuntu Security :: Best Solution To Protect Server From Security Threats?

Jul 22, 2011

I've recently been running a game server from my desktop, as well as a web page to accompany it.I use the ports 80/8123(HTTP)/5900(VNC)/50500(GAME)/5839(ADMINISTRATION).What's the best solution to protect my server from security threats? On a side note, I plan on adding a MySQL server later, but I want to keep it local only.

View 9 Replies View Related

SUSE / Novell :: Clear Apache Cache Without Restarting Apache Server?

Feb 4, 2010

Any one have an idea How to clear apache cache without restarting apache server.

View 5 Replies View Related

Ubuntu Security :: Apply Security Updates Alone - Server

Aug 14, 2010

I'm new to server admin, so my question is based on what may be a bad assumption. With a server, my assumption is "if it ain't broke, don't fix it". In other words, I'm not really interested in upgrading the software to the latest and greatest if I already have stuff working on the server.

However, the one place where I DO want to constantly have upgrades is for security patches. How do I apply security updates to Ubuntu Server... and ONLY security updates?

View 2 Replies View Related

OpenSUSE Network :: Using Nessus To Evaluate Security Of Web Server?

May 7, 2010

I am using nessus to evaluate the security of a web server. I have started up the nessus daemon on the server, here's the netstat output:

Code:
Active Internet connections (only servers)
Proto Recv-Q Send-Q Local Address Foreign Address State PID/Program name
tcp 0 0 *:ldap *:* LISTEN 3565/slapd
tcp 0 0 *:mysql *:* LISTEN 4026/mysqld
tcp 0 0 *:pop3 *:* LISTEN 3584/xinetd
tcp 0 0 *:sunrpc *:* LISTEN 3463/portmap
tcp 0 0 *:www-http *:* LISTEN 13855/httpd2-prefor
tcp 0 0 *:ssh *:* LISTEN 3577/sshd
tcp 0 0 *:nessus *:* LISTEN 6118/nessusd: waiti
tcp 0 0 *:smtp *:* LISTEN 3636/master
tcp 0 0 *:https *:* LISTEN 13855/httpd2-prefor
udp 0 0 *:sunrpc *:* 3463/portmap

It's listening on the default nessus port 9390. I am trying to connect to the nessus server instance using Open-VAS Client. I have generated the client and server certificates, I have pointed the client at the User Certificate File, the User Key File and I have a CA cert. I have created a user account on the nessus server. The problem is that when I try and log in from the Open-VAS client it keeps saying it can't connect. Is there anywhere I can check to see if it's being caught in a firewall, or where I can see if the connection is even making it to the server..

View 4 Replies View Related

Security :: RHEL Server Is Broadcasting On LAN And Choking The Network?

Jan 3, 2011

I have a RHEL 5 Server dedicated to web hosting. HTTPD 2.2.x.x is running on it with PHP and MySQL. The machine is not a server system (hardware wise, a C2D 2.66 with 2GB RAM and 2 x NICs). I have a CIR Fiber link with a pool of live IPs. The machines including this web server is plugged into a switch which has all the live interfaces and is separate from the LAN switches. The problem i am facing is that, when ever this web server is plugged in, the traffic on live switch is choked. Internet slows down to a halt (as live interface of proxy is plugged in this switch. DNS stops resolving name due to time outs. Mail delivery is slowed and the mail ques pile ups. The moment i get this machine of the switch, all the traffic becomes normal. Therefore i have deduced that this is the faulty server. I do not know if this server is hacked and working as a bot or it is a mere hardware problem(faulty LAN Card).

View 3 Replies View Related

Fedora Security :: Preventing Application From Using Network?

Jun 4, 2011

is it possible to block an application from using the network? If yes, how? I read it's possible with iptables and with selinux... Also, what about creating a user who can't connect and run the application with that user?

View 7 Replies View Related

General :: Route A Security Video Server Which Is Inside Network?

Jan 18, 2010

I am trying to route a security video server which is inside my network to the internet. my network is two interface eth0 (internet network xxx.xxx.xxx.198 and internal network 192.168.5.1

I am trying to see an web server on 192.168.5.184

View 2 Replies View Related

Security :: /proc/net/packet Says My Server Is Acting As Network Sniffer - According To NSA Doc

Apr 25, 2011

So, the NSA puts out some handy documentation on locking down a RHEL server (running centos 5.6 x64 myself) here, [url]. Under "Ensure System is Not Acting as a Network Sniļ¬€er" on page 63, it says that if any numbers below the first line in /proc/net/packet, that it is acting as a network sniffer.

I get the following output:

Code:

Unless I've been pwned, I don't know exactly what could be causing this. Besides samba, nmap (compiled from source, not from yum), screen, and rtorrent, there's nothing I've installed beyond the fresh install I did a few days ago. I was not running nmap when looking at /proc/net/packet.

View 8 Replies View Related

Server :: Apache Redirection Based On IP?

Feb 25, 2011

I'm in a bit dilemma on how to set IP based forwarding to specific URL. I have internal staff from 207.173.4.xxx going to www.domain.com. I would like to forward them to www2.domain.com when they are offsite and working remotely from different IP address range. Is there way to achieve this with Apache? If not, is there a software solution to achieve this effect?

View 6 Replies View Related

Security :: 100's Of "apache-init-server" - Keeps Running Out Of Memory

Sep 25, 2010

I have a VPS that has 512MB of ram. I'm using it as a mail/web server. It keeps running out of memory. I know amavis/clamav are memory hogs, but I checked my ps aux and found 100's of instances of "apache-init-server" running. I killed them all, and they keep spawning back. What could be causing this. I've never seen this on a webserver before. OS: CentOS 5.5

View 10 Replies View Related

Security :: Increase The Security Of NFS Kernel Server ?

Aug 29, 2009

I followed this how to to make a NFS server: [url]

So it means: exports looks like this:

Quote:

Here are some quick examples of what you could add to your /etc/exports

For Full Read Write Permissions allowing any computer from 192.168.1.1 through 192.168.1.255

It means that if sbdy arrives with a linux machine, puts the ethernet cable into the router, then logs as root on his machine, and mount the exports. He can do almost everythg, with permissions chmod'ing ...

Is that LAMP, or i am wrong for nfs kernel servers, the ultimate users/password servers against that to prevent those physical approches /logins?is there good how to ?

View 5 Replies View Related

Security :: Test Server Security With Hping3?

Feb 15, 2011

I want to know how can I test my server security with hping3 tool I want to make a virtual DoS or DDoS or SYNK attack in my LAN to test my server security and ability against these attack .Is hping3 a good solution for this or not if yes how can I do this which option of this can make such these attacks?

View 4 Replies View Related

Debian Configuration :: Setup A NFS4 Server (no Security, Local Home Network Behind FW)?

May 30, 2010

I'm trying to setup a NFS4 server (no security, local home network behind FW). It seems that I'm missing something because 'rpcinfo -p' does not list v4 for NFS: petit-pois:/home/eric# rpcinfo -p

[Code]...

View 3 Replies View Related

Server :: Name Based Virtual Host For Apache And Tomcat

Jul 22, 2010

I am having two domains. for ex: www.example1.com and www.example2.com. These two domains need to be hosted under one ip. Yes by configuring name based virtual host we can do that. But, my question is my first domain(www.example1.com) need to be hosted by Apache web server, and my second domain(www.example2.com) need to be hosted by Tomact. Is it possible to configure name based virtual host for a scenario like this.

View 6 Replies View Related

Security :: Using Open Source Network Security Tools On Large Network

Jul 5, 2010

how efficient and effective are these snort, argus, ossec etc etc for an organization having 3500 PC Network, connected through 700+ Cisco Devices (Layer 2 and Layer 3), and scattered on 130 different sites (geographically)? what should be the combination of products and what should be the architecture for an efficient forensics activity?

View 2 Replies View Related

Software :: TCP Server Application For SUSE?

Aug 31, 2010

I have multiple locations that I have a Serial-to-Ethernet devices. Right now, I have these devices set up as TCP Server (on the device), but would like to change them to TCP Client. My question is, if doing this, what application is used on Linux to act as a TCP Server? The TCP Client will send the data to a IP Address and Port number, and I would like for Linux to accept the connections. I then have another application running that will grab that data. Is this something easy to do

View 2 Replies View Related

SUSE :: Uninstalling Apache Web Server

Feb 7, 2011

I was running a web server using apache, somehow it started not working properly. So I wanted to uninstall Apache. At first, I wrote "./apachectl stop" to stop the running apache server. After that i wrote "rm -rf /usr/local/apache2" to delete the folders. So far, it seemed normal. But when I wrote //localhost on firefox, the page which was appearing when apache server was running again appeared. So, I restarted my machine, and after that opened localhost again. But the page was still there. I don't know what caused this, but it is obvious that that server is immortal. Also, I found another path for apache server but I am not quite sure. It is /srv/www/htdocs/ that directory consisted that appearing page. I am not sure if i delete this folder, too. By the way, I guess I broke my internet connection while configuring Apache web server. I just wrote "# telnet localhost 80" in the terminal. And after that I changed the port which apache server listens to in httpd.conf. Does anyone know how to terminate this apache' session? Also could somebody tell me how can i fix my internet connection?

View 2 Replies View Related







Copyrights 2005-15 www.BigResource.com, All rights reserved