spirit posteets tagged security  [ Profile ]

Sort by: Date / Title /

  1. 9 years ago
    Create a specific user for backups purpose with read-only permissions
    1. GRANT SHOW DATABASES, SELECT, LOCK TABLES, RELOAD ON *.* to backup@localhost IDENTIFIED BY 'password';
    2. FLUSH PRIVILEGES;
    Paste this in your website: <script type="text/javascript" src="http://www.posteet.com/embed/2082"></script>
  2. 9 years ago
    it's also possibl with a .htaccess file and "deny from all " in that file
    1. if (isset($_SERVER['REMOTE_ADDR'])) die('Permission denied.');
    Paste this in your website: <script type="text/javascript" src="http://www.posteet.com/embed/2039"></script>
  3. 9 years ago
    1. perl -le 'print crypt("password", "salt")'
    Paste this in your website: <script type="text/javascript" src="http://www.posteet.com/embed/2000"></script>
  4. sponsorised links
  5. 10 years ago
    1. /etc/apache2/apache2.conf
    2. > ServerTokens Prod
    3. > ServerSignature Off
    4.  
    5. /etc/php5/apache2/php.ini
    6. > expose_php = Off
    Paste this in your website: <script type="text/javascript" src="http://www.posteet.com/embed/1405"></script>
  6. 10 years ago
    Most vulnerability scanners will complain about TRACE method being enabled on the web server tested. This tip disable it and return a 403 FORBIDDEN error to the client (apache versions newer than 1.3.34 for the legacy branch, and 2.0.55 for apache2).
    This needs to be added in the main server config and the default is enabled (on):
    
    TraceEnable Off
    Paste this in your website: <script type="text/javascript" src="http://www.posteet.com/embed/1337"></script>
  7. 11 years ago
    Permet par exemple de laisser des internautes déposer des fichiers dans un répertoire. Si on ne veut pas qu'ils puissent déposer un fichier PHP et l'exécuter, on peut vouloir empêcher l'exécution de PHP dans ce répertoire.
    1. # ajouter la conf suivante dans votre VirtualHost
    2.  
    3. <Location /upload/>
    4.    AddType text/plain .php .php4 .php5 .phtml .py .pl .cgi .rb
    5. </Location>
    Paste this in your website: <script type="text/javascript" src="http://www.posteet.com/embed/1014"></script>
  8. 11 years ago
    Prevent flooding
    Switch# conf t
    Switch1(config)# interface ethernet 0/4 
    Switch1(config-if)# port secure max-mac-count 100
    Paste this in your website: <script type="text/javascript" src="http://www.posteet.com/embed/688"></script>

First / Previous / Next / Last / Page 1 of 1 (7 posteets)