LinuxQuestions.org
LinuxAnswers - the LQ Linux tutorial section.
Go Back   LinuxQuestions.org > Blogs
User Name
Password

Notices



Old
Rating: 3 votes, 5.00 average.

HOWTO: Set up Modsecurity on Debian 7

Posted 06-10-2013 at 08:30 PM by Rearden888
Updated 06-10-2013 at 08:43 PM by Rearden888 (typos)

There are many places online that explain how to install and perform initial set up for modsecurity on Apache. However, I haven't found anywhere that shows how to do it with the standard Debian packages and that respects the normal apt update process. The caveat here is that like a lot of standard Debian packages, the packages included in wheezy lag upstream by a few versions. This is obviously something to consider, especially when dealing with security related software. If you're like me,...
LQ Newbie
Posted in Uncategorized
Views 9156 Comments 0 Rearden888 is offline
Old

sshd chroot jails based on hostname and SELinux

Posted 04-01-2013 at 11:46 AM by sag47
Updated 04-01-2013 at 11:51 AM by sag47

Why chroot jails based on host name?
If you don't care about the background info just jump to Setting up sshd chroot jail and SELinux.

So I have started configuring automated deployments through my organization using a continuous integration server called Jenkins. I'll post more on Jenkins regularly so that eventually you can have a series of posts which wrap up into a nice and secure howto for Jenkins. So here's why I want chroot jails based on host names.

...
Senior Member
Views 3759 Comments 0 sag47 is offline
Old

Dance with the Devil: UEFI: Getting MS to sign our Pre-bootloader

Posted 11-21-2012 at 02:50 PM by hydraMax (Bits and Pixels)
Updated 11-24-2012 at 12:45 AM by hydraMax

Found this hilarious, and sickening, link on Slashdot:

http://blog.hansenpartnership.com/ad...-uefi-signing/

It's an article written by the poor guy who is trying to get the Linux Foundation's pre-bootloader signed by Microsoft, so we all can install Linux on Microsoft-approved hardware (without disabling UEFI secure boot manually). Describes all the steps he had to go through, compromises he had to make, and agreements he had to sign in the process....
Member
Posted in Uncategorized
Views 2847 Comments 1 hydraMax is offline
Old

UFEI Secure Boot: An Understandable Explanation

Posted 11-12-2012 at 06:13 PM by hydraMax (Bits and Pixels)
Updated 11-21-2012 at 02:56 PM by hydraMax
Tags security

http://faif.us/cast/2012/sep/27/0x32/

This oggcast contains Matthew Garrett's discussion of UEFI and Secure Boot. It is the first explanation I've heard on the subject that really came across clearly.
Member
Posted in Uncategorized
Views 737 Comments 0 hydraMax is offline
Old

People are still using Java...?!

Posted 09-02-2012 at 01:03 AM by hydraMax (Bits and Pixels)

I thought a few lines from this last report about a Java vulnerability were rather humorous:

http://www.theregister.co.uk/2012/08..._patched_java/

Quote:
Security Explorations, the Polish security startup that discovered the Java SE 7 vulnerabilities that have been the targets of recent web-based exploits, has spotted a new flaw that affects the patched version of Java released this Thursday....

As in the case of the earlier vulnerabilities,
...
Member
Posted in Uncategorized
Views 2823 Comments 1 hydraMax is offline

  



All times are GMT -5. The time now is 09:33 PM.

Main Menu
Advertisement

Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
identi.ca: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration