The latest info about eLearning with Chamilo
Secunia gave the Chamilo Security team full details of three security flaws detected in version 1.9.4 on Monday the 4th of March 2013. These flaws were detected by Fernando Muñoz, a regular contact for Chamilo in terms of security. We…
We are currently trying out this Fail2Ban rule on one of our server, to block simple (but very upsetting) DOS attacks on Nginx automatically (after 30 seconds). New filter in /etc/fail2ban/filter.d/nginx-dos.conf: # Fail2Ban configuration file # # Generated on Fri…
I wouldn’t want this post to disappear, so just to make sure that the information is better spread on what passwords *not to use*, here is the list: 1. 123456 2. 12345 3. 123456789 4. Password 5. iloveyou 6. princess…
This article was first written in December 2003 for the BeezNest technical website (http://glasnost.beeznest.org/articles/96) Some UNIX administrators find it handy to add «.» in the PATH (and some even put it at the beginning of the PATH). Why is this…
To create and save iptables rules the default Debian way, this is the way to go: create your rules using the CLI [1] iptables save them on the active rule by issuing a /etc/init.d/iptables save active create the rules for the…
An IDS is a system to track any changes not planned to a system. It is often used on sensitive machines where any unauthorized access is purely prohibited but can also act as a fool-proof system, more like a monitoring…
A lot of people use the root account to do anything they need, just because it is easier… This is a really bad idea, as that user can do anything to the system. Not only can he access/delete/modify any file…
A NIDS is a Network Intrusion Detection System, a system to detect intrusions from the network and take counter-measures ranging from (temporarily) blacklisting to logging through responding with specially crafted IP packets to slow down or kill the attacking host….
It might seem kind of weird to mention it, but I had somewhat of a big scare when Secunia sent us an e-mail entitled “Security Patches in Dokeos 1.8.5”. If my fears had been right, it would have meant that…