Language Selection

English French German Italian Portuguese Spanish

felosi's blog

How to install ffmpeg on centos/rhel, The simple way!

Filed under
Howtos

Easy way to get ffmpeg going on your box. Source : http://nix101.com/2007/06/07/how-to-install-ffmpeg-on-centosrhel/

Quick way to stop apache and connect floods with csf

Filed under
Howtos

Quick and simple way to mitigate small to large apache floods. source : http://nix101.com

Grsecurity Patched Kernel Install Script For Redhat based Pentium 4 servers

Filed under
Howtos

After a lil work getting the config right for s hosting/shell server I finally came up with the script that will patch, compile, and install the gresecurity patched kernel. You just run the shell script and it will download the kernel and patch, patch the kernel, download the config, and then compile and install.

The config I got made up is for Pentium4/Xeon/Celeron based servers.

Looking for people to share server with

Filed under
Just talk

The last few months I have been using a server for security research, kernel testing, mod security rules testing, firewalls, dos protection, you name it. As well as to host my ircd and site. We basically have the server for development and testing although it is ran just like any other hosting server. In order to do the research we do we must keep a server.

Cpanel Wins for Security, A Short Review

Filed under
Reviews

This is a short review I wanted to write about cpanel. I never have been the greatest fan of it since it is only compatible with apache1 and all but after using other control panels I realized how secure and practical cpanel is for a multiple user server and hosting enviorment.
Read it here http://www.evolution-security.com/modules.php?name=News&file=article&sid=291

CentOS and Redhat, Best for the Server

Filed under
Reviews

Short review of CentOS and Red Hat and how Ubuntu is not gonna push anyone out of the server and enterprise market especially these two.

Fix Apf ipt_state error on new kernels

Filed under
Howtos

For those using apf on the new kernels and getting ipt_state error, since 2.6.15 they changed the name of them kernel modules and apf does not recognize them. Do not enable monokern as some people suggest, this will screw up your passive ftp and will not work good

GrSecurity Kernel Script

Filed under
Howtos

GrSecurity kernel upgrade and patch script. Downloads the 2.6.17.7 kernel and the latest grsecurity patch and then unpacks and patches the kernel, after that it tells you what to do next.

Mod Security rules.

Filed under
Howtos

After extenisve testing I have found what I think are the best mod security rules you can have for a basic server with average php scripts.

Quick Guide to Securing a Lamp Server

Filed under
Howtos

In the last few years on the Internet the price of dedicated servers have went down and more people are beginning to use them for their sites, game servers, or small hosting companies. With this comes as I was talking about in my last article inexperienced admins. Lots of people I spoke too are too intimated by the linux shell and try to administer their server completely from the control panel.

HOWTO: Installing Grsecurity patched kernel in debian/ubuntu

Filed under
Howtos

Walkthrough for compiling and installing grsecurity patched kernel on debian based systems.

first post- kernels and whatnot

Filed under
News

Well I signed up at the site after I seen they posted on of my howtos which I am thankful for. It was the one on the grsecurity patched kernel. I think it should help quite a few people as there are so many local root exploits out now and most distro's security and dev teams are doing nothing about it.

Syndicate content

More in Tux Machines

Wine-Staging 2.0-RC5 and 'Squad' Might be Coming to GNU/Linux

  • Wine-Staging 2.0-RC5 Improves Compatibility For Origin, GOG Galaxy & More
    Wine-Staging 2.0-RC5 was released on Sunday as the newest version of this experimental/testing Wine build. This time around there are some exciting new patches. On top of re-basing off Friday's Wine 2.0-rc5 release and continuing to maintain quite a number of patches that haven't yet made their way into mainline Wine, a few more patches were added. Upstream Wine is currently under a code freeze until the 2.0 release later this month but that doesn't stop the Wine-Staging crew.
  • Release 2.0-rc5
    Wine Staging 2.0-rc5 improves the compatibility of various applications that require at least Windows Vista or Windows 7. This includes Origin, Uplay, GOG Galaxy and many more. Several bugs were fixed in the PE loader to support loading of packed executables with truncated headers and/or on-the-fly section decompression. If you are using the 64 bit version of Wine, you may also benefit from the memory manager improvements, which allow applications to reserve/allocate more than 32 GB of virtual memory. The memory allocations are now only constrained by resource limitations of the hardware / the operating system and no longer by an artificial design limit in Wine.
  • Looks like FPS game 'Squad' might be coming to Linux soon
    The game uses Unreal Engine and we know already how iffy their Linux support actually is. Hopefully they won't come across too many troubles.

Security News

  • Microsoft slates end to security bulletins in February [iophk: "further obscuring"; Ed: See this]
    Microsoft next month will stop issuing detailed security bulletins, which for nearly 20 years have provided individual users and IT professionals information about vulnerabilities and their patches. One patching expert crossed his fingers that Microsoft would make good on its pledge to publish the same information when it switches to a new online database. "I'm on the fence right now," said Chris Goettl, product manager with patch management vendor Shavlik, of the demise of bulletins. "We'll have to see [the database] in February before we know how well Microsoft has done [keeping its promise]."
  • Reflected XSS through AngularJS sandbox bypass causes password exposure of McDonald users
    By abusing an insecure cryptographic storage vulnerability (link) and a reflected server cross-site-scripting vulnerability (link) it is possible to steal and decrypt the password from a McDonald's user. Besides that, other personal details like the user's name, address & contact details can be stolen too.
  • DragonFlyBSD Installer Updated To Support UEFI System Setup
    DragonFlyBSD has been working on its (U)EFI support and with the latest Git code its installer now has basic UEFI support.

A Look At The Huge Performance Boosts With Nouveau Mesa 17.0-devel On Maxwell

Landing this week in Mesa 17.0-devel Git was OpenGL 4.3 for NVC0 Maxwell and a big performance boost as well for these GeForce GTX 750 / 900 series NVIDIA "Maxwell" graphics processors. Here are some before/after benchmarks of the performance improvements, which the patch cited as "1.5~3.5x better", when testing a GeForce GTX 750 Ti and GTX 980. Read more Also: Fresh Tests Of Intel Beignet OpenCL

Q4OS 1.8.2, Orion

New version 1.8.2 is based on the the most recent release of stable Debian Jessie 8.7, important security patches have been applied and core system packages have been updated. Q4OS Update manager has been rewritten from scratch to provide a robust and reliable tool for safe system upgrades. Other Q4OS specific fixes and under the hood improvements are delivered as usual. All the updates are immediately available for existing Q4OS users from the regular Q4OS repositories. Most attention is now focused on the development of the testing Q4OS 'Scorpion' version 2.2, based on Debian 9 Stretch. Q4OS 2.2 Scorpion continues to be under development so far, and it will stay as long as Debian Stretch will be testing, the release date is preliminarily scheduled at about the turn of April and May 2017. Q4OS 'Scorpion' will be supported at least five years from the official release date. Read more