Your Ftp server rejects your access to the server on providing the username and do not prompt for a password as well and you may see the following error in the your server logs: Jan 10 11:22:33 mai1 pure-ftpd: (?@xx.xx.xx.xx) [WARNING] Sorry, cleartext sessions are not accepted on this server. Please reconnect using SSL/TLS security [...]

Kippo is a medium interaction SSH honeypot designed to log brute force attacks and, most importantly, the entire shell interaction performed by the attacker. Kippo is inspired, but not based on Kojoney. If you need more information about Kippo please visit its official site on http://code.google.com/p/kippo/. This tutorial shows how you can compile and install [...]

Here are some basic steps to secure Apache Web Server IMPORTANT NOTE: These suggestions may vary from server to server and modify the values as per your server configurations. It is up to you to determine if any of the changes suggested here are not compatible with your requirements. 1. Hide the Apache Version number, [...]

I. VULNERABILITY WordPress <= 2.8.3 Remote admin reset password II. BACKGROUND WordPress is a state-of-the-art publishing platform with a focus on aesthetics, web standards, and usability. WordPress is both free and priceless at the same time. More simply, WordPress is what you use when you want to work with your blogging software, not fight it. [...]

Download the gzipped tarball, extract it and run the installation script. download: # wget http://downloads.rootkit.nl/rkhunter-<version>.tar.gz Note: It doesn’t matter where you save the tarball extract: # tar zxf rkhunter-<version>.tar.gz installation: # cd rkhunter # ./installer.sh (Source: http://www.evolution-security.com/) (Source: http://www.rootkit.nl/articles/rootkit_hunter_faq.html) Incoming search terms:centos xen windows windows\system32\config\system (3)qmhandle centos install wget (2)rootkit hunter windows 2012 (1)rootkit hunter [...]

1. Enable SYN cookies mechanism in the server by the executing command: # echo 1 > /proc/sys/net/ipv4/tcp_syncookies 2. Increase the backlog queue to 2048 by the command: # sysctl -w net.ipv4.tcp_max_syn_backlog=”2048″ Incoming search terms:linux mail queue maildrop permission denied (1)

Introduction OCS Inventory is a great software to make inventories. The NG Server is formed by: communication server, deployment server, and administration console. Click here to know how it works. The computers that will be inventoried must run an agent (installed on each computer), to connect to the OCS NG Server. We are using the [...]

Icinga is an enterprise grade open source monitoring system which keeps watch over networks and any conceivable network resource, notifies the user of errors and recoveries and generates performance data for reporting. Scalable and extensible, Icinga can monitor complex, large environments across dispersed locations. I am going with the Icinga basic installation and this is [...]

I am not going to ramble on about what host based intrusion detection is or why to use it, as there are plenty of articles already covering those subjects. This article is just to show you how to get Samhain up and running in a client / server configuration with a couple bells and whistles [...]

Introduction Traditionally, information security has been primarily defensive. Firewalls, Intrusion Detection Systems, encryption; all of these mechanisms are used defensively to protect one’s resources. The strategy is to defend one’s organization as best as possible, detect any failures in the defense, and then react to those failures. The problem with this approach is it [is] [...]