There are a number of things that I’ll do on a Linux server as soon as it’s network is live.. follow along to make your Linux server more secure!
Continue Reading…

The servers I set up all run CSF, an open source software firewall that utilizes iptables to block and shape how we allow access to the servers. Using their graphs, I’m able to see that the USA is the top offender for failed login attempts, port scans, etc.. using CSF, I’m going to block a couple of the next offenders (because I don’t want to block USA.. ). Read along to see how!
Continue Reading…

If you run a Linux server, and you’re on top of things, you’ve heard of GHOST.. which is a heap buffer overflow vulnerability announced today. Distributions are working on a patch and some are ready now. Here’s how to patch them.
Continue Reading…

When using CSF, there will be times when you need to quickly ssh into a server and modify the csf blocks. It could be that a friendly IP got blocked or that you want to add a new block. The following short article will give you the most common command line options.
Continue Reading…

As soon as you set up a server on the Internet, you’re a target. For instance, today is Dec 12th and I set up a new CentOS 7 server on my home network on Dec 8th, then port forwarded port 22 through the firewall (untangle) right to this machine. Today, I finally got around to installing CSF/LFD, but wanted to first see how many IPs had been attempting to ssh into this new box. Read on and i’ll show you how to easily find out.
Continue Reading…