• Web server security

I often wonder if people are really bothered that much about security. On many forums we see endless posts like 'Hey! What's this in ... [more]

• dns security

One of the most important ways you can enhance the security of your name server is to run a recent version of Bind (if you ... [more]

• Rootkit Hunter

Rootkit Hunter is a security monitoring and analyzing tool for POSIX compliant systems. The Rootkit scanner ensures that you are about 99.9% clean of nasty ... [more]

• dshield + pf

Dshield (www.dshield.org) supply a list of the top 20 attacking class C (/24) subnets over a three day period. You can read the info in ... [more]

• Expiretable

Expiretable is a utility used to remove entries from a pf table based on their age. In a previous post we showed how to block ... [more]

• Bruteforce attacks

If you're allowing ssh logins from anywhere on the internet it's inevitable that someone, or a script, will eventually try to find a username/password combination ... [more]

• Using pfctl

Previously we set up pf (packet filter) on our FreeBSD 6 server. The pfctl command controls pf. Some examples are: disable pf:

pfctl -d

enable pf:

pfctl ... [more]

• Portaudit

Portaudit checks installed packages for known vulnerabilities and generates reports including references to security advisories:

cd /usr/ports/ports-mgmt/portaudit make install clean

Besides cvsup to keep your ports tree ... [more]

• Packet Filter

pf is included in the basic FreeBSD install for versions newer than 5.3 as a separate run time loadable module. Apart from pf there are ... [more]