Tags: security

Sort by: Date / Title /

1. MySQL permissions for backup
   2 months ago by spirit
   Create a specific user for backups purpose with read-only permissions
   1. GRANT SHOW DATABASES, SELECT, LOCK TABLES, RELOAD ON *.* to backup@localhost IDENTIFIED BY 'password';
   2. FLUSH PRIVILEGES;
   backupsmysqlreadonlysecurityuser
   Embed | Raw source | 0
   Paste this in your website: <script type="text/javascript" src="http://www.posteet.com/embed/2082"></script>
2. Blocking Web Access to Cron Jobs
   7 months ago by spirit
   it's also possibl with a .htaccess file and "deny from all " in that file
   1. if (isset($_SERVER['REMOTE_ADDR'])) die('Permission denied.');
   apachecronhtaccessphpsecurity
   Embed | Raw source | 0
   Paste this in your website: <script type="text/javascript" src="http://www.posteet.com/embed/2039"></script>
3. htpasswd replacement snippet using perl and crypt
   9 months ago by spirit
   1. perl -le 'print crypt("password", "salt")'
   crypthtpasswdpasswordperlsaltsecurity
   Embed | Raw source | 0
   Paste this in your website: <script type="text/javascript" src="http://www.posteet.com/embed/2000"></script>
4. Sponsorised links
   sponsorised links
5. Prevent Apache and PHP to disclose any information about themselves
   1 year ago by spirit
   1. /etc/apache2/apache2.conf
   2. > ServerTokens Prod
   3. > ServerSignature Off
   4.  
   5. /etc/php5/apache2/php.ini
   6. > expose_php = Off
   apachephpsecuritysignature
   Embed | Raw source | 0
   Paste this in your website: <script type="text/javascript" src="http://www.posteet.com/embed/1405"></script>
6. Apache Tips: Disable the HTTP TRACE method
   1 year ago by spirit
   Most vulnerability scanners will complain about TRACE method being enabled on the web server tested. This tip disable it and return a 403 FORBIDDEN error to the client (apache versions newer than 1.3.34 for the legacy branch, and 2.0.55 for apache2).

   This needs to be added in the main server config and the default is enabled (on):
   
   TraceEnable Off

   apachehttpsecuritesecuritytipstrace
   Embed | Raw source | 0
   Paste this in your website: <script type="text/javascript" src="http://www.posteet.com/embed/1337"></script>
7. Interdire le PHP dans un répertoire avec apache
   2 years ago by spirit
   Permet par exemple de laisser des internautes déposer des fichiers dans un répertoire. Si on ne veut pas qu'ils puissent déposer un fichier PHP et l'exécuter, on peut vouloir empêcher l'exécution de PHP dans ce répertoire.
   1. # ajouter la conf suivante dans votre VirtualHost
   2.  
   3. <Location /upload/>
   4.    AddType text/plain .php .php4 .php5 .phtml .py .pl .cgi .rb
   5. </Location>
   apachephpsecurityvirtualhost
   Embed | Raw source | 0
   Paste this in your website: <script type="text/javascript" src="http://www.posteet.com/embed/1014"></script>
8. Set the maximum number of MAC addresses allowed on a switch interface
   2 years ago by spirit
   Prevent flooding

   Switch# conf t
   Switch1(config)# interface ethernet 0/4 
   Switch1(config-if)# port secure max-mac-count 100

   ciscomacsecurityswitch
   Embed | Raw source | 0
   Paste this in your website: <script type="text/javascript" src="http://www.posteet.com/embed/688"></script>

First / Previous / Next / Last / Page 1 of 1 (7 posteets)