Lynis (Unix Audit Tool), Technical Input
Jun 22, 2008
After peeking around at this board for some years, I decided to create an account.
I'm the original author of Rootkit Hunter and decided to create a new tool, named Lynis.
Lynis is an auditing tool for Unix (Linux, BSD and other). It scans the system and available software to detect security issues, bad/insecure configuration options and unsafe file(s) permissions. It tries to assist administrators in using and maintaining best practices, but also in the common things which get forgotten (like expired SSL certificates).
Though Lynis has been available for some months now, and many
updates/suggestions have been implemented, it still can use a broader user base. So my issue (we are in the technical issues section after all) is that I like more input and want to know what other people audit on their systems. Or what tools they like the most. Of course I have many ideas myself, but with the many different people here (in skills and specialties), every input is most likely improving the tool and increasing security for others as well.
In case you like to try the software (GPL, free to use), the software can be found at www . rootkit .nl (can't use URL's yet, due 5 post policy)
Since I don't only want to announce my tool (but like to have some input), I placed it in this section, hope it doesn't look like a "commercial" sell.
View 2 Replies
ADVERTISEMENT
Apr 27, 2008
I am thinking of Futurehosting.biz unmanaged server.
Can you please see if these skills are enough:
(1) Futurehosting will do the security setups.
Skill-sets:
(2) use of ssh to backup mysql, directory contents; do file management (create directories, move files); restore mysql
What other skill-sets do i need?
(3) do i need to know how to install o/s? (gulp!)
(4) setup email accounts?
(5) create sub-domains?
I thought of downloading webmin (i read about it in the other posts but have no experience) and will it help in points (3) to
(5)?
View 1 Replies
View Related
Jan 5, 2007
Can someone recommend an affordable shop that performs security audits a more specifically network and web-application penetration tests?
View 3 Replies
View Related
Apr 18, 2008
any good solution for corporates out there?
View 13 Replies
View Related
May 26, 2015
I'm testing Plesk 12.1 and noticed after enabling ModSecurity, the modsec_audit log file is empty.
I'm running CentOS7.1 w/Plesk 12.1.23
View 2 Replies
View Related
Mar 26, 2007
I was wondering the following:
1) How many client accounts is it safe to run under a VPS with 256MB RAM, provided that the clients will be using Virtualmin (safe?) and max a forum each (say phpBB) with regular expectations/traffic.
2) Why do people limit the number of MySQL client databases living in a server. Is it reliable service (won't crash) to provide 5 mysql dbs per client in the above VPS specs?
3) How do I limit the quota on a MySQL db? For example 50MB of space per db.
View 1 Replies
View Related
Apr 2, 2008
Warning: I do not want to re-open discussion on some previous threads about the legality of inode limitations. If it gets to that, please feel free to close this thread.
Reading through some other posts about inodes made me look at my own VPS setups. I use XenSource 3.1 on a CentOS 5 Dom0, using LVM for VM storage. When I create a new virtual machine (CentOS5 or Ubuntu, etc) I format the root filesystem with ext3. I use all the defaults, including number of inodes. So for a 20 gigabyte filesystem, I get:
Code:
Filesystem Size Used Avail Use% Mounted on
/dev/sda1 20G 453M 19G 3% /
Filesystem Inodes IUsed IFree IUse% Mounted on
/dev/sda1 2621440 13861 2607579 1% /
Would there be any advantage to limiting the number of inodes a VPS has? Sure, if you had 200,000 inodes instead of 2.6 million inodes, you would have more available space. But there doesn't seem to be a hard limitation on the disk drives I'm using (WD 250GB SATA using linux software raid 1). I assume I could set any amount of inodes to a filesystem?
View 14 Replies
View Related
Nov 7, 2007
I have moderate experience in administrating. I recently got a quarter cabinet, and I have 2 servers in there.
I have registered a company name, as a domain which is currently hosted at GoDaddy (www/mail) (mydomain.com)
But I have installed centos5 on one server, and called it web1.mydomain.com, added the web1 CNAME in GoDaddy's DNS control. Even did an rDNS to it through my provider.
I have installed Webmin on it to help me add virtual servers (who will be my customers)
And web1.mydomain.com has a mail server on it (Postfix).
Might even put DNS on it. These virtual servers will send emails as well (as I'll be hosting them)
But for now, what will be my next steps in getting my mail server (or the main server) accepted in the web world, for example, I've done SPF records, and rDNS. But what else do I need to do so my email is accepted everywhere?
The virtual domains will be sending mail using the postfix, and ofcourse it'll mean they're piggybacking on web1.mydomain.com, so I guess I need to do stuff so email from web1.mydomain.com will be accepted worldwide.
View 10 Replies
View Related
Oct 29, 2007
I am running Windows Webserver for more than 2 years.
I wanted to ask that, does anyone ever has bad experience with Windows Server ? Like ASP problems, like ASP connections limit FULL, or server Halt or Restart due to huge requests of ASP or ASP connections limit on server. Please let me know if you experienced any such issue.
I am thinking to use ASP pages fully with huge traffic on Windows Server (but i doubt that maybe there could be some ASP limitations when large amount of ASP pages open, it creates some problem). Or do you recommend Linux servers over Windows for High Traffic website ?
View 11 Replies
View Related
Sep 5, 2008
The sales Live Support of powweb is great but after signing up an account with them, the technical support seems to be very bad.
I need to wait more than one hour to get a support staff.
View 14 Replies
View Related
Nov 9, 2008
I have been in internet business since 1996 and I never have such a bad hosting provider as BurstNet, I am really amazed of the quality of the technical support.
Since friday 19:00 till today I have no web services because an error causing high CPU load averages of almost 270%.
The restarted my server twice that day (see it on my logs), I really dont know why, and they dont want to tell me, and since then the server has this problems.
Looking to my logs I found errors provoking high I/O waits, I explain all this and send this and other logs:
-----
Nov 8 09:53:16 ***** kernel: [47129.296313] sd 2:0:0:0: SCSI error: return code = 0x08000002
Nov 8 09:53:40 ***** smartd[6316]: Device: /dev/sda, 1 Currently unreadable (pending) sectors
Nov 8 10:03:54 ***** kernel: [47129.296316] sda: Current [descriptor]: sense key: Medium Error
Nov 8 10:07:27 ***** kernel: [47129.296319] Additional sense: Unrecovered read error - auto reallocate failed
Nov 8 10:11:47 ***** kernel: [47129.296326] Descriptor sense data with sense descriptors (in hex):
Nov 8 10:15:22 ***** kernel: [47129.296329] 72 03 11 04 00 00 00 0c 00 0a 80 00 00 00 00 00
Nov 8 10:18:09 ***** kernel: [47129.296340] 00 33 1a b2
Nov 8 10:18:21 ***** kernel: [47129.296345] end_request: I/O error, dev sda, sector 3349170
Nov 8 10:18:21 ***** kernel: [47129.296373] ata3: EH complete
----
Right now the load averages are 0 because I stopped Mysql that seems that is causing the high cpu load (because of the hard drive error).
After 14 hours waiting for the URGENT TICKET they say:
-----------
Brian S.11-09-2008 - 12:04AM
I am seeing no unusual load on your server at this time:
---------------------------------
login as: root
root@66.197.157.149's password:
Last login: Sat Nov 8 13:00:44 2008 from 189.143.246.156
[root@**** ~]# uptime
22:54:03 up 1 day, 2:34, 2 users, load average: 0.00, 0.00, 0.00
[root@**** ~]#
---------------------------------
Again, I explain it again, now I receive this answer:
----------
Kevin B.11-09-2008 - 11:28AM
Hello,
This server seems fine.
[root@***** ~]# w
10:18:50 up 1 day, 13:59, 2 users, load average: 0.07, 0.02, 0.00
------------
Why If I explain there is an error, with log files proving it, they don't read my messages! the simply don't read the messages or what is going on? I really don't get,
I explain the problem!
Maybe the only way they can put attention is driving the server again to that high load averages right?
View 11 Replies
View Related
Jul 13, 2008
can any body list some sites that are useful for refering to technical matters that we face in web hosting support companies.
View 3 Replies
View Related
Sep 2, 2008
How can I do marketing for my 24/7 webhosting sales and technical support service?
I know SEO is a methods but another?
View 4 Replies
View Related
Jul 1, 2008
if anybody is looking into hosting their own TLD with the new ICANN decision? I'm wondering what the requirements would be? And has anybody seen/heard any mention of what the registration fees are likely to be, I know there will be bidding on names in dispute...maybe this will be the case for every worth-while TLD.
View 6 Replies
View Related
Feb 4, 2007
I know there are many threads covering similar topics but their answers often do not contain technical arguments but rather subjective reasons and I'd like to know whether there are also some technical reasons to favor one of these two forums over the other.
Does one handle a higher load particularly well or does one have the cleaner code or is there any other reason to choose one over the other?
View 14 Replies
View Related
May 15, 2007
I work for Microsoft. Used to be a regular participant on Web Hosting Talk a few years ago (then moved over to Europe at that time). I've been doing some work recently that has led me back to the community here to ask for some input on where administrators of Windows-based hosting services go to find technical information.
How often might you use the following two Web sites?
1) [Hosting Solutions on TechNet]
2) [Windows Hosting Discussions]
I've just re-registered a new account so I have to do the five post thing before I can insert links, otherwise I'd to a direct link to the two above. If you're not familar with them, just do a Web search for those phrases and the sites will be at the top of the list.
Are there other Web sites that you use regularly for technical information on operating Windows hosting services? Or do you mostly just enter a phrase in Google and temporarily use the Web site/s that come up in the search results?
View 5 Replies
View Related
Feb 11, 2009
I have an Architecture/Interior Design firm and send lots of emails and CAD and photo files. I am designing a website and having it hosted for the first time. (I know...I know...I should have done it long ago..) I have read tons of articles on web hosting.
The website will be lots of photos (thumbnails to be enlarged possibly), text.
Has anyone heard of Inmotion? (web hosting company) They seem to have what I am looking for at a decent price and have gotten some good reviews (but I don't know if those reviews are sponsored by someone).
I work on a Macbook Pro and am looking into creating the website on iWeb....
View 7 Replies
View Related
Jul 24, 2008
I have gotten my server configured and running, and have been advised to look into creating virtual hosts for each site, I have found good information on setting virtual hosts within postfix, but does anyone have any good reading on configuring Apache2?
I only have one site I intend to host in the immediacy, but I'd like to host multiples eventually.
View 4 Replies
View Related
Jul 2, 2008
I'm thinking about colocating in Milwaukee, purchasing a rack over at the Cogent facility to resell and was faced with a problem. The problem is, to some people, a rather simple one. How can a reseller sell their servers when competition sells their services for unlimited space, bandwidth, domains, sub-domains and such for only $1/month?
I've done the math I could with the information provided to me but am not able to get around the above problem. I can see why some users go to this type of service though. A lot of websites don't even need more than what these sellers offer, and with good reason.
Usually that person only uses 10MB of space and 10GB of transfer.
To break even on hosting, I would have to be able to sell 12 servers at $169 each. Our hardware would be fairly new, capable of whatever you want it to do, short of cutting your lawn, clipping your toenails and what have you, all with 5mbps standard port connectivity inside a 1u case. Obviously you can upgrade the port speeds, drives or whatever else you need in it. This is to snag users into coming with us. Bigger guys charge much more per month for higher end hardware.
I guess what I'm trying to ask is simple. Is it even worth it? Are there users out there who are happy and able to put down $100+ a month for a dedicated server? I'm willing to expand our current services to this type of offering, but I need your input based on your experiences on what you think will end up happening.
View 8 Replies
View Related
Dec 29, 2014
I have been contracted to resolve an issue for a Plesk installation. This installation in particular is receiving the 'no input file specified' error when attempting to access Horde webmail, and I believe it is because:
IIS is in FastCGI mode (as expected) Permissions are not allowing php to execute out of the expected path.
PHP is working for all other domains (there are multiple) on this account, it is just the horde PHP that is not functional.
I have tried contacting Skype support but received no answer.
I have tried running the commands --fix-webmail that were suggested in other threads, but they have no effect.
View 2 Replies
View Related
Jul 7, 2008
I am running a SQL test server here that is piping HUGE amounts of data for a test project I am running.
Approximately 30 queries a second - constantly. That's over 2.5M queries a day -- so we are talking big (I think?)
I am currently running this test on a
AMD Phenom 9300, 4GB RAM - SATA 500GB HDD and I am running MySQL 5.0.51a i386 on CentOS
I have programmed a process control for our applications purpose - basically it controls the launching of our SQL intense applications, and stops launching when the Load is greater than 2.5
I have plans to optimize the number of queries (I will build in a cache to some of the applications - and run INSERT statements all together) however I am looking for SQL tweaks that will improve performance. Would running the 64bit version work better?
View 12 Replies
View Related
Mar 14, 2007
I'm considering to buy new Intel Quad Core box for running CPanel shared hosting (high traffic sites).
Supermicro 6015P-8
Intel Clovertown E5310 Quad Core (Quantity 2)
4 x Kingston 1GB 240-Pin DDR2 FB-DIMM ECC Fully Buffered DDR2 667
2 x Seagate Cheetah 10K.7 ST3146707LC 147GB 10,000 RPM (RAID-1)
LSI LOGIC 320X2128-F
Total: $3742
Supermicro 6015V-MT
Intel Clovertown E5310 Quad Core (Quantity 2)
4 x Kingston 1GB 240-Pin DDR2 FB-DIMM ECC Fully Buffered DDR2 667
2 x Western Digital Raptor WD1500ADFD 150GB 10,000 RPM (RAID-1)
3ware 9550SX-4LP
Total: $2950
Which one of the above offers better performance and I/O?
I went with higher end SCSI chassis and higher end LSI card to have 133Mhz on the PCI-X slot, but is it worth the extra cost?
Any better recommendation with similar or cheaper prices?
I'm also wondering which one is faster between a single Intel E5310 Quad Core vs dual Woodcrest 5130?
View 7 Replies
View Related
Apr 24, 2015
I'm using php 5.5.9 with Plesk 12 running on Ubuntu and am trying to increase the max_input_vars value.
For the PHP settings in the additional directives box I have added the following: max_input_vars = 5000
I have saved the settings and even rebooted the server, however the max_input_vars is stuck at 1000 when looking at the php configuration.
View 8 Replies
View Related
Dec 18, 2007
I just got a Dell 1600SC dual xeon 2.8 from the Planet with a Dell DRAC3 remote access card. In my RHEL3 system this hardware combination works great, but in the new RedHat Enterprise Linux 5 system the DRAC accepts no keyboard input after RHEL5 loads, thus making it impossible to login to the OS through the drac remote console redirect. Tech support suggested it was because the RedHat Enterprise 5 and CentOS5 kernel does not load the PS/2 keyboard driver which is required for the Drac3 to accept keyboard input. (a drac4 works, but that's not an option for this server I would guess.)
At tech support's suggestion, I added
atkbd.set=2
to the /boot/grub/grub.conf file
rebooting had no change - still text input to enter the bios, but no text input to login to the OS.
I also added
serial --unit=0 --speed=9600 -word=8 --parity=no --stop=1
terminal --timeout=2 serial console
which I saw in /etc/grub.conf (which is not linked to /boot/grub/grub.conf but instead a separate file) but still no luck - no keyboard input accepted through the drac3 remote console to login to the os through the drac console redirect.
Has anyone solved this hardware/software combination? Or is RHEL5 simply not going to be backwards compatible with the Dell DRAC3 hardware?
Any ideas, suggestions, or solutions would be greatly appreciated as I've been working on getting a solution for this for a week now and no closer at this point.
I would really like to have the DRAC as a backup connection with my server incase any firewall or software update issue ever prevents me from connecting via ssh. I hate to have roll back to an older OS though to get it. I'm stuck.
View 0 Replies
View Related
Dec 4, 2008
I am trying to find out how to install VPS on HP Unix OS and which one to chose.
Can you set me on right track?
View 2 Replies
View Related
Sep 4, 2007
Any Unix FTP tool to get all files (files+subdirectories) from remote server with 1 line command?i'm using FreeBSD
View 1 Replies
View Related
Aug 13, 2007
Ive recently switched from PC to OSX, i now own '2' Macs, a laptop and a G4 Quicksilver, although its CPU speed is slower and the Ram is lesser then my old PC, it performs much much quicker and more efficient.
The question is, i'm a web developer, i know very little about the back end goings on, such as System Administration, but i've got a few books on the subject which are aimed at Unix system administrators. Does UNIX cover both OSX and Linux (Debian mainly).
Eventually i want to be able to run my own server, i own a debian dedicated server, but its not my own, its the datacenter's and i dont really know enough to get down and dirty in the back end. Id like to be able to set up servers from scratch in the long run.
So would learning UNIX cover both OSX and Linux, im not bothered about Windows, i don't plant to use a Windows machine again.
View 2 Replies
View Related
Jul 21, 2008
CentOS - I had php4 running and php5 as cgi but then decided I wanted to have it the other way around i.e. run php5 standard and php4 as cgi.
php5 is now running fine but php4 bombed with this error:
Code:
Unexpected character in input: '?' (ASCII=15) state=1 in /usr/local/cpanel/cgi-sys/php4
I fixed it by doing the following:
EDIT php.ini file:
Normally in /usr/local/php4/lib/php.ini
Under
;;;;;;;;;;;;;;;;;;;;;;;;;
; Paths and Directories ;
;;;;;;;;;;;;;;;;;;;;;;;;;
UNCOMMENT this line
Code:
;cgi.fix_pathinfo=0
(i.e. remove the ";" infront)
and
CHANGE 0 to 1:
Code:
cgi.fix_pathinfo=1
This is for Linux and must be done with root via SSH
Not sure if this will help anyone, but I thought I'd post it anyway.
View 0 Replies
View Related
Mar 8, 2008
I'm getting the feared "input/output error" on /home partition on a freebsd server this server runs RAID-1, dmesg shows:
twed0: controller error - device failure (flags = 0x40)
g_vfs_done():twed0s1g[READ(offset=36997054464, length=16384)]error = 5
anyone knows what's my best action here? unmount /home and fsck it? or shutdown the server and replace a drive? (but, from this error message, I couldn't guess which drive is it... also, the 3dm raid monitoring didn't find any problem, so maybe it's the controller?)
View 3 Replies
View Related
Apr 3, 2008
i add the php5 and set php4 as cgi from whm,
after finisging,
it takes errors
Warning: Unexpected character in input: (ASCII=26) state=1 in /usr/local/cpanel/cgi-sys/php4 on line 864
Warning: Unexpected character in input: (ASCII=8) state=1 in /usr/local/cpanel/cgi-sys/php4 on line 864
Parse error: syntax error, unexpected '?' in /usr/local/cpanel/cgi-sys/php4 on line 864
View 2 Replies
View Related
