BeezNest fixes new Chamilo security flaws in 48h

Secunia gave the Chamilo Security team full details of three security flaws detected in version 1.9.4 on Monday the 4th of March 2013. These flaws were detected by Fernando Muñoz, a regular contact for Chamilo in terms of security. We…

More Details
Nginx Anti-DOS filter for Fail2Ban

We are currently trying out this Fail2Ban rule on one of our server, to block simple (but very upsetting) DOS attacks on Nginx automatically (after 30 seconds). New filter in /etc/fail2ban/filter.d/nginx-dos.conf: # Fail2Ban configuration file # # Generated on Fri…

More Details
20 most common passwords

I wouldn’t want this post to disappear, so just to make sure that the information is better spread on what passwords *not to use*, here is the list: 1. 123456 2. 12345 3. 123456789 4. Password 5. iloveyou 6. princess…

More Details
Why adding . to the PATH on UNIX is BAD ?

This article was first written in December 2003 for the BeezNest technical website (http://glasnost.beeznest.org/articles/96) Some UNIX administrators find it handy to add «.» in the PATH (and some even put it at the beginning of the PATH). Why is this…

More Details
Netfilter – iptables on Debian

To create and save iptables rules the default Debian way, this is the way to go: create your rules using the CLI [1] iptables save them on the active rule by issuing a /etc/init.d/iptables save active create the rules for the…

More Details
IDS – Intrusion Detection Systems

An IDS is a system to track any changes not planned to a system. It is often used on sensitive machines where any unauthorized access is purely prohibited but can also act as a fool-proof system, more like a monitoring…

More Details
Why using root on UNIX/Linux is bad ?

A lot of people use the root account to do anything they need, just because it is easier… This is a really bad idea, as that user can do anything to the system. Not only can he access/delete/modify any file…

More Details
NIDS – Network Intrusion Detection System

A NIDS is a Network Intrusion Detection System, a system to detect intrusions from the network and take counter-measures ranging from (temporarily) blacklisting to logging through responding with specially crafted IP packets to slow down or kill the attacking host….

More Details
Chamilo, new course, error about group permissions

There is a common problem appearing when installing a new Chamilo portal that I have seen a lot recently, so I thought I’d share the details here. The problem When installing Chamilo on a cPanel-kind-of-hosting, it might happen that you…

More Details
No security flaw so far…

It might seem kind of weird to mention it, but I had somewhat of a big scare when Secunia sent us an e-mail entitled “Security Patches in Dokeos 1.8.5”. If my fears had been right, it would have meant that…

More Details

Quick Contact Form