Linux Sysadmin Blog

Linux Sysadmin Blog header image 4

Entries Tagged as 'Security'

Colbert tells how Barr stuck his penis into the Anonymous hornets nest

May 9th, 2011 · 1 Comment · Security, sysadmin

I realized that I missed a great episode of Colbert when a friend described at lunch how Colbert had likened the Barr attack on anonymous to him sticking his penis to the hornets nest. I hope you enjoy a laugh. For a good article on how anonymous got into Barrs accounts read this Ars Technica [...]

[Read more →]

Tags:

Drupalcon Security Session Notes

April 19th, 2010 · 1 Comment · drupal, Security

Some of us are attending the San Francisco Drupalcon 2010 this week.  I am in a session which some of you may find interesting.  The concepts are far from revelational but they are relevant. Most security

[Read more →]

Tags:

Mail Relay Issue on Cpanel Server

February 16th, 2010 · 1 Comment · Centos, hosting, Security, sysadmin

I noticed lots of email being relayed on one of our shared hosting server, CentOS5 with Cpanel and running Exim, and the strange thing is that the email server (MX) for these accounts are pointing to Google (GoogleApps), and we have correct entries for localdomains and remotedomains for these account. The relayers (‘From’ server/address) looks [...]

[Read more →]

Tags: ·

cvs [checkout aborted]: absolute pathnames invalid for server

February 3rd, 2010 · No Comments · Debian, drupal, Security, Tips and Tricks

Absolute Path Error: cvs [checkout aborted]: absolute pathnames invalid for server (specified `/path/drupalsite/’) Ok, I got the error above when I performed Drupal CVS update on our Debian server (newly installed CVS 1.12.13). The same command works on other server with older CVS installation. The issue is the reference to local cvs directory where I [...]

[Read more →]

Tags: ·

Iframe injection attack investigation

September 21st, 2009 · 6 Comments · hosting, Security

The whole hidden IFRAME vulnerability has been going on for some time, only a few of our client have been effected by this. The net is still buzzing with this issue and while some are saying that the injection are results of php insecurities, mysql injection or cross site scripting, while others point to key [...]

[Read more →]

Tags:

CentOS 4.8 finally released!

September 1st, 2009 · No Comments · Centos, Security, sysadmin

After a long development time, Centos 4.8 was finally released on the 21st August. This is a good thing that after the latest problems between the centos developers, they were able to pull this out finally and now be able to focus on the upcoming 5.4 release. There are no major changes in this update, [...]

[Read more →]

Tags:

Install TrueCrypt on Fedora 10

July 6th, 2009 · 4 Comments · desktop, HowTo, Installation, Security

TrueCrypt is an open source encryption application, it has an ability to create hidden encrypted containers and file systems/volumes, it is portable and cross platform compatible. It allows to use cascading cyphers and encrypts/decrypts files on the fly. Be sure to read the FAQ and documentation before fully committing your files to TrueCrypt. – install [...]

[Read more →]

Tags:

Hidden WordPress Spam: <-- manager-start -->

May 22nd, 2009 · 1 Comment · Installation, Security, wordpress

A month ago one of our customers complained on lots of spam comments appearing on his WordPress site. There’s no development changes, including updates, to that site since it was launched and it runs on WP version 2.3.3. We managed the issue by activating the Akismet plugin and upgrading the WordPress to latest version (2.7.1 [...]

[Read more →]

Tags: ·

umask ‘ing apache under cPanel

May 14th, 2009 · No Comments · cpanel, hosting, Security, sysadmin

Ran into an issue today where a php created file was unreadable by other users or services that run under a different user. Since this is a software originated issue the sysadmin would love for the developer to change the code to include the chmod() php function to set permission to 644 after file creation. [...]

[Read more →]

Tags: