security

  1. Y

    Linux redhat 7.4 (Maipo) Auditing

    Hi, I am trying to start auditing on chown/chmod commands. It is working (ie logs are written to audit file) with auditctl ctl command line utility but when I am putting in the /etc/audit/rules.d/audit.rules file, it doesn't work. Below is the command used. Immutable tag is commented and the...
  2. G

    How can I find suid files In Linux?

    From security perspective of my linux boxes I want to list suid enabled files with the find command.
  3. Trafalmagorian

    Advertisers and trackers on Linux

    Apologies if this post is naive or just plain dumb. BUT, here goes. I just installed Linux Mint on my system. I like the way it works; its simplicity, elegance really. I like the command line interface; takes me back to programming in Fortran in 1974! However, my expectations were that Linux...
  4. D

    Security and VPN's

    I'm a new convert to Linux and very much like the usability. My main concern when switching over was security as I handle some sensitive information on my computer, and maybe have an all to healthy sense of paranoia. This is partly my reason for switching over. I have an account with CactusVPN...
  5. X

    BlackArch, Kali, Parrot or Tails???

    Anyone have thoughts on the pros & cons of these "security" distros?
  6. J

    how to bypass linux /bin/login file using radare2

    has anyone tried disassembling the /bin/login file and bypass it. I am trying but its difficult to find the point of faliure plz suggest if anyone has tried it
  7. NickBBB

    Most secure and Easiest to use Linux Distro for new users in Sep 2018.

    I am wondering everyone's thoughts on the best Linux distro for a new user that seeks security, anonymity, and ease of use. I am aware that live booting and VM's are a thing, but also want to know what people think for the primary distro. Thank for your input. :)
  8. Tobby P

    Domain specific language best practices

    I’m discussing usage of DSL (domain specific language) in security tools with my colleagues. We haven't been able to reach an agreement over naming conventions. There are many tools using DSL: splunk, sumologic, elasticsearch and etc. But what are the best practices? So for example how would...
  9. atanere

    Favorite Password Manager

    You can't have too much security these days. After years of using a little notebook to record much-too-simple passwords, I realized the time had finally come to choose a password manager. But there are many to choose from, even in the Linux world, and we all have different needs. For me, I did...
  10. RoseHosting

    Secure your SSH using two-step authentication on CentOS 7

    Running your own Linux server could be very challenging, especially if you want to keep the security of the server on a high level and to protect the personal data as much as possible. During the initial server setup, you may have generated an RSA key pair to connect to the server without using...
  11. K

    disallow specific ssh ciphers and/or MACS (white list approach)

    Hi people, I have a report detailing weak ssh ciphers on a system. How can I dis-allow these specific weak ciphers. The common solution which I am aware of is adding the following lines in sshd_config (which is a black list approach): Ciphers aes128-ctr,aes192-ctr,aes256-ctr...
  12. Rob

    [CentOS-announce] CESA-2017:1109 Moderate CentOS 6 java-1.8.0-openjdk Security Update

    CentOS Errata and Security Advisory 2017:1109 Moderate Upstream details at : https://rhn.redhat.com/errata/RHSA-2017-1109.html The following updated files have been uploaded and are currently syncing to the mirrors: ( sha256sum Filename ) i386...
  13. Rob

    [CentOS-announce] CESA-2017:1100 Critical CentOS 7 nss-util Security Update

    CentOS Errata and Security Advisory 2017:1100 Critical Upstream details at : https://rhn.redhat.com/errata/RHSA-2017-1100.html The following updated files have been uploaded and are currently syncing to the mirrors: ( sha256sum Filename ) x86_64...
  14. Rob

    [CentOS-announce] CESA-2017:1100 Critical CentOS 7 nss Security Update

    CentOS Errata and Security Advisory 2017:1100 Critical Upstream details at : https://rhn.redhat.com/errata/RHSA-2017-1100.html The following updated files have been uploaded and are currently syncing to the mirrors: ( sha256sum Filename ) x86_64...
  15. Rob

    [CentOS-announce] CESA-2017:1106 Critical CentOS 7 firefox Security Update

    CentOS Errata and Security Advisory 2017:1106 Critical Upstream details at : https://rhn.redhat.com/errata/RHSA-2017-1106.html The following updated files have been uploaded and are currently syncing to the mirrors: ( sha256sum Filename ) x86_64...
  16. D

    Possible undetectable rootkits in the wild!

    You may have noticed that the rootkit hunter /rkhunter/ is not updated since 2014...... chkrootkit is the same...... Does anyone know an up/to/date rootkit scanner for linux?
  17. R

    PSA: Adobe Flash security updates end March 2017

    We all knew this was going to happen. Adobe Flash 11.2 security updates will end next month (from the time of this writing). Since flash is already vulnerable it is highly recommended you completely remove it from your system after the security updates end. Some alternatives include (no...
Top