Go back to fronty page View most popular entries View latest additions Submit tutorials to UnixTutorials.info
UnixTutorials logo

Debian tutorials
Debian

Intrusion Detection With BASE And Snort

Post date: July 16, 2006, 16:07 Category: Security Views: 4894 Comments
Tutorial quote: This tutorial shows how to install and configure BASE (Basic Analysis and Security Engine) and the Snort intrusion detection system (IDS) on a Debian Sarge system. BASE provides a web front-end to query and analyze the alerts coming from a Snort IDS system. With BASE you can perform analysis of intrusions that Snort has detected on your network.

Scenario: A linux server running Debian Sarge 3.1 setup according to Falko's - The Perfect Setup - Debian Sarge (3.1).
Let's assume we have one working website (www.example.com) and that the document root is: /var/www/www.example.com/web
The IP of the server is 192.168.0.5 and it's using eth0 as network interface name.
Debian

Secure Your Apache With mod_security

Post date: July 16, 2006, 16:07 Category: Security Views: 5457 Comments
Tutorial quote: This article shows how to install and configure mod_security. mod_security is an Apache module (for Apache 1 and 2) that provides intrusion detection and prevention for web applications. It aims at shielding web applications from known and unknown attacks, such as SQL injection attacks, cross-site scripting, path traversal attacks, etc.

In the first chapter I will show how to install mod_security on Debian Sarge, Ubuntu 6.06 LTS (Dapper Drake), and on Fedora Core 5, and in the second chapter I will describe how to configure Apache for mod_security which is independent from the distribution you're using.

I want to say first that this is not the only way of setting up such a system. There are many ways of achieving this goal but this is the way I take. I do not issue any guarantee that this will work for you!
Debian

Monitoring your filesystem for unauthorised change

Post date: July 15, 2006, 05:07 Category: Security Views: 3281 Comments
Tutorial quote: If you're running a stable server and are worried about an intruder modifying your system binaries to install new corrupted versions you should be using a filesystem integrity checker.
Debian

Lighttpd Webserver Installation in Debian

Post date: July 10, 2006, 21:07 Category: Software Views: 2806 Comments
Tutorial quote: Security, speed, compliance, and flexibility--all of these describe LightTPD which is rapidly redefining efficiency of a webserver; as it is designed and optimized for high performance environments. With a small memory footprint compared to other web-servers, effective management of the cpu-load, and advanced feature set (FastCGI, CGI, Auth, Output-Compression,URL-Rewriting and many more) LightTPD is the perfect solution for every server that is suffering load problems. And best of all it's Open Source licensed under the revised BSD license.
Debian

Darkstat - Nework Traffic Analyzer or Network Monitor

Post date: July 3, 2006, 16:07 Category: Network Views: 3539 Comments
Tutorial quote: darkstat is a network statistics gatherer.

Effectively, it's a packet sniffer which runs as a background process on a cable/DSL router, gathers all sorts of useless but interesting statistics,and serves them over HTTP.
Debian

Stack Smashing Protection for Debian

Post date: June 23, 2006, 22:06 Category: Security Views: 3234 Comments
Tutorial quote: Since we last covered the use of Stack Smashing Protection (SSP) the default compiler for Debian Sid has been upgraded to include it, with no need for custom patching. Read on for a brief demonstration of how it can be used to prevent attacks.

The default C compiler for Sid, which will be used in Etch too, is GCC v4.1. This releasecontains the SSP patch which previously needed to be applied manually (we demonstrated applying this patch for GCC v3.4 a long time ago).

Since the SSP patch is included in the compiler by default it is suddenly a lot easier to start working with it.
Debian

Creating desktop notifications

Post date: June 21, 2006, 10:06 Category: Programming Views: 3546 Comments
Tutorial quote: There are several times when you'll be writing a script, or a program, which needs to communicate with the desktop user and here we'll look at two of the more modern approaches.
Debian

BackupPC Installation And Configuration

Post date: June 19, 2006, 15:06 Category: Software Views: 3438 Comments
Tutorial quote: BackupPC is a high-performance, enterprise-grade system for backing up Linux and WinXX PCs and laptops to a server's disk. BackupPC is highly configurable and easy to install and maintain.
Debian

How To Set Up suPHP With PHP4 And PHP5

Post date: June 17, 2006, 06:06 Category: Security Views: 4217 Comments
Tutorial quote: This tutorial shows how to install and use suPHP with PHP4 and PHP5. suPHP is a tool for executing PHP scripts with the permissions of their owners instead of the Apache user. With the help of suPHP you can also have PHP4 and PHP5 installed at the same time which I will describe at the end of this article.
Debian

HELO restrictions for Exim4

Post date: June 16, 2006, 22:06 Category: Security Views: 3148 Comments
Tutorial quote: One thing that I've noticed on my mailserver in recent months has been a large number of spam mails which identify themselves as being sent from my own IP address. Since they never are blocking them is a useful thing to do before any more intensive filtering is done.
Web-based applications and online marketing solutions - LumoLink