security

After the GVH "hack" where Gov IDs were leaked I started working on this tutorial. It details a similar system to what we use to store client SSL certificates for the interface and deployment system. The system described is complex to setup, but does not compromise in security. If you store...

I have a VPS out there which over time has become a repetitive problem with hack / something getting into container / misuse thereafter.   Big picture unsure why.  Previously isolated post-event to PHP compromise.  Scrapped PHP and went different direction and months later, a second compromise...

In late November 2014 Dragana Damjanovic notified OpenVPN developers of a critical denial of service security vulnerability (CVE-2014-8104). The vulnerability allows a tls-authenticated client to crash the server by sending a too-short control channel packet to the server. In other words this...

Hy, I've just received the newsletter from namecheap about this one. As I've seen even vpsboard uses SHA-1 in the chain...

http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-3566 Overview The SSL protocol 3.0, as used in OpenSSL through 1.0.1i and other products, uses nondeterministic CBC padding, which makes it easier for man-in-the-middle attackers to obtain cleartext data via a padding-oracle attack, aka...

So...  I'm doing a bit of travelling again!  I'm reporting live from an open WiFi access point in a hotel room!  Woo hoo!  I'm currently using a VPN and all that jazz at the moment to encrypt my traffic and hopefully not have anyone sniffing my packets, but what else is there to protecting your...

As a dedicated server or Virtual Private Server (VPS) owner, one of the important tasks is to defend against online attacks. In this tutorial I will discuss how to use IPset with dynamic blocklists to better secure your server. IP sets are a framework inside the Linux kernel, administered by the...

Hello all, I have taken the time to compile a list that summarizes recent malware caught in my Kippo SSH Honeypot. The honeypot was deployed on servers at multiple locations. Attackers downloaded these files after breaking into the honeypot, and tried to run them immediately. Therefore, they...

Just wanted to make a post as I didn't see anything yet for this in the forum.   Any and all hosts are recommend to check the shared servers as well as warn all clients about the root kit.   Ebury uses shared memory segments (SHMs) for interprocess communication. A list of currently...

It's probably worth checking your routers again for firmware updates. A couple older router vulnerabilities like the d-link and newer ones that affect zynos, tplink, and trendnet routers. https://www.team-cymru.com/ReadingRoom/Whitepapers/2013/TeamCymruSOHOPharming.pdf Usual mitigation by...

WHMCS released another security update... http://blog.whmcs.com/?t=84387 Atleast they're fixing issues regularly now. =========================================   Important Maintenance Issue Information ========================================= This Advisory provides resolution for the...

I do believe that this fits the hosting industry as it offers security for all businesses and their networks :) SolidShellSecurity, LLC is now a proud partner with ESET.com and because of that, we can resell licenses at discounted prices. ESET is backed fully by SolidShellSecurity, LLC and is...

https://github.com/fog/fog/issues/2525 How can something like this get overlooked? One would think if they made a design choice to reuse block-level media instead of use some sort of virtual disk, the idea of sharing the drive between two users might've come up at some point? What do you guys...

http://maverickblogging.com/list-of-websites-using-ruby-on-rails-cookiestore-for-session-management/ So it is really easy to copy session cookies and to use them to be logged into someone else account. So use SSL to login to the sites or you can't be sure that someone else can use your account...

Hello All, I have been working on some scripts to help assist new Linux and VPS users in setting up DenyHosts on their server. Below I am including these scripts for you all to use: Some info on DenyHosts for those of you who don't know what it is: What is DenyHosts? DenyHosts is a script...

Since many of us are on OpenVZ still these days and seems like endless problems with attacks... What do you run to secure your OpenVZ VPS?  Emphasis on firewalls, software to manage blocks/ban, traffic filtering, etc.   Interested in recommendations and tutorials that work. What are you doing...

I haven't seen this posted yet, so thought I would since it contains security enhancements from audit. Revision 13 (27 August 2013) Beta Build Added Client, Reseller and Admin single session support. Default is ON but can be disabled from the admin area Configuration » Settings » Security...

I'm simply curious, how do you folks secure your servers? I'm currently using a mix of logwatch, psad, and CSF for instance yet I can't help but still feel vulnerable. Any tips are greatly welcomed and I'm sure they'll be useful for the inexperienced such as myself!

Hello, This isn't too big of news, but I just thought I'd let you all know. GridHostingSolutions is now offering Yubikey's to all dedicated server clients per request to add more security to the clients account. Each Yubikey will cost $30.00 to each client that purchases one. Yubikey By...

source: http://www.scmagazine.com.au/News/352593,backdoor-found-in-openx-ad-platform.aspx "A backdoor has existed for up to nine months in a platform sold by OpenX" "After examining openXVideoAds.zip, I was able to locate the PHP code in flowplayer-3.1.1.min.js, a file located in the...