What is APF (Advanced Policy Firewall)? APF Firewall

APF is a policy based iptables firewall system designed for ease of use and configuration. It employs a subset of features to satisfy the veteran Linux user and the novice alike. Packaged in tar.gz format and RPM formats, make APF ideal for deployment in many server environments based on Linux. APF is developed and maintained […]

hwclock – query and set the hardware clock

set the system time from the hardware clock ============================================ root@s1 [~]# /sbin/hwclock –hctosys root@s1 [~]# set the hardware clock to the current system time ============================================ root@s1 [~]# /sbin/hwclock –systohc root@s1 [~]# root@s1 [~]# /sbin/hwclock –help hwclock – query and set the hardware clock (RTC) Usage: hwclock [function] [options…] Functions: –help        show this help –show        read […]

error: stat of /var/log/cron failed: No such file or directory

Hi guys… Today I faced a issue with a new VPS installed with EZ template Centos 5.2. I was preparing the VPS with logwatch, apf and other security and got cron error under roots mail. Cron errors shows log errors : /etc/cron.daily/logrotate: error: stat of /var/log/boot.log failed: No such file or directory error: stat of […]

Securing MySQL.

Due to differing needs and requirements this is difficult to answer except on a case by case basis. The MySQL website has a section regarding general security of a MySQL database available here: http://dev.mysql.com/doc/refman/5.0/en/security.html Additionally some good practices are: Verify your root MySQL account password is set the test account and database that were created […]

iptables string match to drop malicious urls

iptables string match to drop malicious urls ================================== Usually modsecurity rules can help filter many malicious url attack patterns combined with apache on apache port (http|https).  But what if a malicious attack using a vulnerable url pattern, that exposes or tries to break into your system is coming onto another port? This is where iptables […]

Hotlink protection: How-To prevent people from stealing your files

Create an .htaccess file in your public_html directory with the following code: RewriteEngine on RewriteCond %{HTTP_REFERER} !^$ RewriteCond %{HTTP_REFERER} !^http://(www.)?domain.com.*$ [NC] RewriteRule .(gif|jpg)$ – [F] Where domain.com is your domain.