Slowloris is designed so that a single machine (probably a Linux/UNIX machine since Windows appears to limit how many sockets you can have open at any given time) can easily tie up a typical web server or proxy server by locking up all of it’s threads as they patiently wait for more data. Some servers [...]

Securing your Linux server is important to protect your data, intellectual property, and time, from the hands of crackers (hackers). The system administrator is responsible for security Linux box. In this first part of a Linux server security series, I will provide 20 hardening tips for default installation of Linux system.       #1: [...]

  The whole process of securing a Server or network is quite extensive. I’m discussing just one major aspect of Security here – Firewalls. Specifically my topic is about APF firewall. I’m dividing this article into 2 sections :- The first section is for amateurs. The second section is strictly for experts, at least for [...]

  Has your data been stolen? Did you even notice it? Prevention is better than cure. A good intrusion detection system that detects stealthy movements will help you. Intrusions to your corporate network can be blocked by the implementation of IDS. It can be very powerful if it is implemented the right way. Intrusion Detection [...]

  DDOS, or Distributed Denial of Service is an advanced version of DOS(Denial of Service) attack. Like DOS, DDOS also tries to deny important services running on a server by broadcasting packets to the destination server in a way that the Destination server cannot handle it. The speciality of the DDOS is that, it relays [...]

This tutorial explains how you can install and configure APF – an interface to IPTables which lets you easily configure a full featured firewall to secure servers and workstations connected to a network. This guide describes an example installation on a server with cPanel but it’s only a matter of port numbers which must be [...]

AIDE (Advanced Intrusion Detection Enviornment) is a tool to check the file integrity. It is an opensource substitute for TRIPWIRE. It allows to take snapshots of all the major configuration files, binaries as well as libraries stats. And helps to find which binaries have been changed in case of compromisation of the system. This can [...]