Protection / Security Of FreeBSD !
Jun 21, 2007
I would like to request from people here that use FreeBSD to give us some tips of what should we do to protect and secure our FreeBSD dedicated servers.. I know there are many threads about it and i have searched them, but none of them are talking specifically for FreeBSD (most of them are for linux) and i would like to know exactly what do so as to be 100% protected..
If possible give and some tutorials or sites with tutorials so as to help us..
i am going to run a personal dedicated server which means that none else except me will have access to the server (if that helps you to give more specific info)
View 8 Replies
ADVERTISEMENT
Apr 9, 2009
I haven't really messed with FreeBSD very much, but I'm picking up a FreeBSD server and needed to know of a good free firewall for it.
On my CentOS/Debian servers I use CSF and have had good luck with it, so I would like something like that if there is one out there.
View 5 Replies
View Related
Oct 10, 2007
I m configuring webserver on FreeBSD with Apache2.2+mysql50-server+php. What are the things that i can take into consideration for securing the web services and my server?
View 1 Replies
View Related
Jul 7, 2009
Just thought I would post some information regarding a "backdoor" in which many web hosts fail to secure.
If you run WHMCS on the same server you setup client accounts, someone can simply sign-up and easily access your WHMCS configuration file.
All it takes is for the user to upload a shell script and execute the following command:
Quote:
cat /path/to/your/configuration.php-file/
From there, they can access your configuration settings (MySQL) and create an administrator account.
How to fix:
If you have already disabled functions in your php.ini file, then you should be fine. If not, you will want to disable the following functions in your php.ini file:
Quote:
disable_functions="exec, shell_exec, proc_close, proc_open, pope n,system, passthru, escapeshellarg, escapeshellcmd, symlink"
You may want to enable safe_mode as well, but this may cause issues for certain scripts.
I would highly recommend installing mod suPHP and php cgi or simply move your "master" account to a different server.
View 3 Replies
View Related
Oct 8, 2009
I am looking for some good ddos protection providers, via protected dns. I've searched on internet, but most of them are really expensive.
Please tell me some ddos protection providers what could help me.(gige is too expensive btw).
And I found some ddos protection scripts. How can a script protected a server from ddos? A sript like CSF or DDoS deflate?
View 12 Replies
View Related
Apr 4, 2008
I run a web hosting company and one of my servers is a LAMP server running CentOs 5. A user of mine has a Joomla installation running to manage his website and he has run into the following problem that I am puzzled by.
When Joomla adds a component or module to itself, or when a user uses the Joomla upload functionality, Joomla will add the new files under the user name "apache". This makes sense as it is the apache service running PHP that is actually creating the files.
However, when he FTP's into the account to modify these files, he doesn't have the appropriate permissions to do so as he doesn't have a root level login, just permissions on his home directory which is the site. Any help would be much appreciated.
Also, does anyone know how to change the owner/group of a directory and all of its sub directories in Linux without changing the actual permissions? I.e. some of the files in the folder have different permissions (0644 as apposed to 0755) than its parent but if I do a top down user/group change on the folder it will change everything in that folder to 0755.
View 10 Replies
View Related
Aug 14, 2008
whether if i will an increase in performance or security if I upgrade from 6.3 to 7.0?
View 12 Replies
View Related
Jan 10, 2007
How do I check if SMP is on in FreeBSD? And if its off what do I need to do to turn it on?
View 8 Replies
View Related
Aug 4, 2007
I know someone probably asked this question... I am looking for a VPS provider that offers unmanaged VPSes with FreeBSD + Cpanel, 512RAM guaranteed, ~250-300GB bw, and 10-15GB hdd, for a price of $40-55/mo.
Can anyone recommend a good VPS provider that meets the above requirements?
View 0 Replies
View Related
Jul 9, 2007
Can anyone please suggest a good FreeBSD VPS hoster?
View 2 Replies
View Related
Jul 10, 2008
I installed FreeBSD 6.3 with minimum packedges. (pkg.txt on attach)
Install Apache+PHP+MySQL
But then I load Drupal or Magento (CMS) browser say that:
Warning: include_once(includes/install.inc) [function.include-once]: failed to open stream: No such file or directory in /ftp/drupal.web/includes/database.inc on line 129
Warning: include_once() [function.include]: Failed opening 'includes/install.inc' for inclusion (include_path='/usr/local/share/phpmailer') in /ftp/drupal.web/includes/database.inc on line 129
Fatal error: Call to undefined function install_goto() in /ftp/drupal.web/includes/database.inc on line 130
I didn't udestand WHY?
In joomla and wordpress all work normla.
In attacment I send apache and php configs.
View 4 Replies
View Related
Feb 11, 2008
I am using FreeBSD with Cpanel.
df -h:
Filesystem Size Used Avail Capacity Mounted on
/dev/twed0s1a 496M 491M -35M 108% /
devfs 1.0K 1.0K 0B 100% /dev
/dev/twed0s1h 86G 67G 12G 85% /home
/dev/twed0s1d 248M 21M 207M 9% /tmp
/dev/twed0s1g 15G 6.9G 6.5G 51% /usr
/dev/twed0s1f 4.8G 3.6G 827M 82% /var
procfs 4.0K 4.0K 0B 100% /proc
This is creating Problem at Cpanel,How can i recover space from /dev/twed0s1a.
View 6 Replies
View Related
Feb 1, 2008
My system is affected with something named __sbmaskrune
I can't connect to FTP at this moment..
I am running FreeBSD
/scripts/ftpup
Ftp Setup Script Version 6.1
This is the proftpd installer
Searching ports for proftpd .....................................found proftpd in /usr/ports/ftp/proftpd....Done
proftpd (1.3.1-1) is already installed.
dedi01# /scripts/ftpup --force
Ftp Setup Script Version 6.1
This is the proftpd installer
/libexec/ld-elf.so.1: /usr/local/lib/libruby18.so.18: Undefined symbol "__sbmaskrune"
Removing old ftp server (pure-ftpd)
pkg_delete: no packages match pattern(s)
The ProFTPd configuration file /usr/local/etc/proftpd.conf appears to be ok!
No matching processes were found
Waiting for ftpserver to restart..............finished.
ftpserver has failed,
View 7 Replies
View Related
Jan 8, 2008
gAs per MySQL official page [url]
there is no MySQL 5.0.51 available for FreeBSD.
The latest available version is 5.0.45
5.0.51 was officially released more than a month ago.
View 3 Replies
View Related
Apr 8, 2008
We are basically looking for advice on which OS to choose. CentOS appeals as it is basically RHEL - and since people are paying for that they must be doing something right. It is apparently uber stable because the versions have been tested to death... but because the packages are so out of date, or just not there, we will need to install many things from source, which defeats the point to using it for its stability.
FreeBSD seems to have an awful lot of up to date packages, took a look at it on Distrowatch and was very impressed by many are the latest versions. This would make life so much easier because the package manager can handle installs and updates, really can't be bothered with messing around compiling software for install/updates.
In my mind, if an open source project as mature as the likes of Apache, PHP or MySQL, I am pretty sure you are very unlikely to experience problems by using the latest stable version. Surely by using older versions you are more likely to experience problems as of the result of bugs/security exploits that have only been fixed in the more recent releases.
Would you use FreeBSD or CentOS/RHEL? Or are both equally as good?
View 14 Replies
View Related
Oct 8, 2007
i having an issue with FreeBSD...
I have a Raid5 setup and working fine, I just put 2 new 18gig drives for raid1.
Now i see in dmesg this.
amrd0: <LSILogic MegaRAID logical drive> on amr0
amrd0: 104193MB (213387264 sectors) RAID 5 (optimal)
amrd1: <LSILogic MegaRAID logical drive> on amr0
amrd1: 17365MB (35563520 sectors) RAID 1 (optimal)
In bold is the 'new' array.
in fdisk i get....
fdisk /dev/amrd1
******* Working on device /dev/amrd1 *******
parameters extracted from in-core disklabel are:
cylinders=2213 heads=255 sectors/track=63 (16065 blks/cyl)
Figures below won't work with BIOS for partitions not in cyl 1
parameters to be used for BIOS calculations are:
cylinders=2213 heads=255 sectors/track=63 (16065 blks/cyl)
fdisk: invalid fdisk partition table found
Media sector size is 512
Warning: BIOS sector numbering starts with sector 1
Information from DOS bootblock is:
The data for partition 1 is:
sysid 165 (0xa5),(FreeBSD/NetBSD/386BSD)
start 63, size 35551782 (17359 Meg), flag 80 (active)
beg: cyl 0/ head 1/ sector 1;
end: cyl 164/ head 254/ sector 63
The data for partition 2 is:
<UNUSED>
The data for partition 3 is:
<UNUSED>
The data for partition 4 is:
<UNUSED>
I get write errors when i use sysinstall. As for the raid status. Its fine.
Logical Drive : 1( Adapter: 0 ): Status: OPTIMAL
---------------------------------------------------
SpanDepth :01 RaidLevel: 1 RdAhead : Adaptive Cache: CachedIo
StripSz :064KB Stripes : 2 WrPolicy: WriteThru
Logical Drive 1 : SpanLevel_0 Disks
Chnl Target StartBlock Blocks Physical Target Status
---- ------ ---------- ------ ----------------------
0 00 0x00000000 0x021ea800 ONLINE
0 03 0x00000000 0x021ea800 ONLINE
View 1 Replies
View Related
Feb 11, 2007
I've been using FreeBSD for a while now, but I still feel like a novice when looking at top because I don't understand or know what all of the STATES mean. I know that many of them represent different kernal states and certain programs have their own unique STATES, but what do the usuals mean? man top only has 2-3 listed with very vague descriptions.
Does anyone here understand many of them? If so it would be greatly appreciated if you could write up a few of the basic ones.
select
nanslp
kserel
RUN
pause
lockf
kqread
sbwait
pipered
Those are the ones I currently see in top. I know there are probably thosands of others, but those are the ones I usally look at.
View 4 Replies
View Related
Mar 15, 2007
after many painstaking hours, im at a loss as to where to go now (finally managed to get up to the point of running phpize in the ffmpeg directory)
...
Originally I thought i had compiled it in when compiling PHP,
Infact:
Code:
'./configure' '--disable-debug' '--disable-rpath' '--with-bz2' '--with-curl' '--with-gd' '--with-openssl' '--with-png' '--with-zlib' '--with-mcrypt' '--with-mysql' '--with-pear' '--enable-bcmath' '--enable-ftp' '--enable-magic-quotes' '--enable-sockets' '--with-ffmpeg=yes' '--with-apxs2=/usr/local/sbin/apxs'
But when i go to the tests/ffmpeg_test.php file I get:
Code:
Warning: dl() [function.dl]: Unable to load dynamic library '/usr/local/lib/php/extensions/no-debug-non-zts-20020429/ffmpeg.so' - Cannot open "/usr/local/lib/php/extensions/no-debug-non-zts-20020429/ffmpeg.so" in /usr/local/www/apache22/data/tests/test_ffmpeg.php on line 17
Can't load extension /usr/local/lib/php/extensions/no-debug-non-zts-20020429/ffmpeg.so
I used the ports tree to install FFMPEG and here is the version info:
Code:
bsd# ffmpeg -v
ffmpeg version 0.4.9-pre1, build 4718, Copyright (c) 2000-2004 Fabrice Bellard
built on Mar 14 2007 20:42:22, gcc: 3.4.6 [FreeBSD] 20060305
After finally getting to this point, i say the heck with it and just decide to try and use phpize and compile it in that way as an extension ( following: http://ffmpeg-php.sourceforge.net/ ).
However, after I got phpize to work ( had to cp autoconf259 and autoheader259 to autoconf and autoheader since it was complaining about it ), it gave me this set of errors:
Code:
/bin/sh /usr/local/src/ffmpeg-php-0.5.0/libtool --mode=compile gcc -I. -I/usr/local/src/ffmpeg-php-0.5.0 -DPHP_ATOM_INC -I/usr/local/src/ffmpeg-php-0.5.0/include -I/usr/local/src/ffmpeg-php-0.5.0/main -I/usr/local/src/ffmpeg-php-0.5.0 -I/usr/local/include/php -I/usr/local/include/php/main -I/usr/local/include/php/TSRM -I/usr/local/include/php/Zend -I/usr/local/include/ffmpeg -DHAVE_CONFIG_H -g -O2 -Wall -fno-strict-aliasing -c /usr/local/src/ffmpeg-php-0.5.0/ffmpeg-php.c -o ffmpeg-php.lo
gcc -I. -I/usr/local/src/ffmpeg-php-0.5.0 -DPHP_ATOM_INC -I/usr/local/src/ffmpeg-php-0.5.0/include -I/usr/local/src/ffmpeg-php-0.5.0/main -I/usr/local/src/ffmpeg-php-0.5.0 -I/usr/local/include/php -I/usr/local/include/php/main -I/usr/local/include/php/TSRM -I/usr/local/include/php/Zend -I/usr/local/include/ffmpeg -DHAVE_CONFIG_H -g -O2 -Wall -fno-strict-aliasing -c /usr/local/src/ffmpeg-php-0.5.0/ffmpeg-php.c -fPIC -DPIC -o ffmpeg-php.o
In file included from /usr/local/src/ffmpeg-php-0.5.0/ffmpeg-php.c:25:
/usr/local/include/ffmpeg/avcodec.h:14:27: ffmpeg/common.h: No such file or directory
In file included from /usr/local/include/ffmpeg/avcodec.h:15,
from /usr/local/src/ffmpeg-php-0.5.0/ffmpeg-php.c:25:
/usr/local/include/ffmpeg/rational.h: In function `av_cmp_q':
/usr/local/include/ffmpeg/rational.h:36: error: syntax error before "tmp"
/usr/local/include/ffmpeg/rational.h:38: error: `tmp' undeclared (first use in this function)
/usr/local/include/ffmpeg/rational.h:38: error: (Each undeclared identifier is reported only once
/usr/local/include/ffmpeg/rational.h:38: error: for each function it appears in.)
In file included from /usr/local/src/ffmpeg-php-0.5.0/ffmpeg-php.c:26:
/usr/local/include/ffmpeg/avformat.h: In function `av_init_packet':
/usr/local/include/ffmpeg/avformat.h:48: warning: implicit declaration of function `int64_t_C'
/usr/local/include/ffmpeg/avformat.h:48: warning: integer constant is too large for "long" type
/usr/local/include/ffmpeg/avformat.h:49: warning: integer constant is too large for "long" type
*** Error code 1
Stop in /usr/local/src/ffmpeg-php-0.5.0.
After I get all this working and install it on a another machine I plan on writing a guide for FreeBSD users inside the tutorials section - but this one part has stumped me.
The only thing I can think of is something along the lines of maybe i downloaded a 64 bit version of something along the way?
Should i continue along this route with phpize adding it as an extension, or does someone else have some information on that ffmpeg_test.php file?
View 14 Replies
View Related
Oct 1, 2007
I plan to install one server with RAID with that run on a dedicated card which support FreeBSD. As i have not much experience in this,
View 4 Replies
View Related
Feb 5, 2007
i created a new cron job with "crontab -e" command by using the "root" user.
* * * * * php -f /path/file.php
i tried it for php -q too. while i type this command on the shell the php file works. there is no problem with crontab rule too. the chmod of file.php is 777, user root group wheel..
but it cant work. i couldnt understand why it aint.
i created a shell file and changed the cron like:
* * * * * /path/file.sh
and in file.sh:
#!/bin/sh
php -q /path/file.php
mkdir /path/anydir
so, /path/anydir have been created but file.php not executed. so the problem is not about cron rule.
View 5 Replies
View Related
Dec 27, 2007
This is the current setup for the user (which is a normal setup)
ISP
|
switch
|WAN |LAN 10.10.10.0/24
servers
switch is a cisco 2924XL
So on the servers there's dual ports one serves for WAN traffic and the other serves Local traffic.
Ive added in the sysctl net.link.ether.inet.log_arp_wrong_iface = 0 still no affect.
error...
Quote:
arp: IP_ADDRESS is on fxp0 but got reply from HW_ADDRESS on fxp1
arp: IP_ADDRESS is on fxp0 but got reply from HW_ADDRESS on fxp1
arp: IP_ADDRESS is on fxp0 but got reply from HW_ADDRESS on fxp1
arp: IP_ADDRESS is on fxp0 but got reply from HW_ADDRESS on fxp1
arp: IP_ADDRESS is on fxp0 but got reply from HW_ADDRESS on fxp1
arp: IP_ADDRESS is on fxp0 but got reply from HW_ADDRESS on fxp1
View 7 Replies
View Related
Oct 25, 2007
whats the command to find out what file system do i use on my FreeBSD server?
Linux Cat didnt worked out.
View 2 Replies
View Related
Oct 20, 2007
I'm facing this issue with FreeBSD 6.2.
After FreeBSD 6.2 install completely with no errors, the server is rebooted, then it says "no boot loader" even though the boot loader was installed during the setup.
I have tried to reinstall several times by 3 different sources, but no lucks.
View 3 Replies
View Related
Jun 2, 2008
Does anybody has an experience with running nmap from FreeBSD Jail?
Nmap runs on main host OK, but when I try to run it from jail... NO CHANCE! Still has some problem...
View 2 Replies
View Related
Jul 1, 2006
I've been a web developer for some years now, and I've been working with PHP/MySQL in Linux quite a lot, but I've never worked with Linux. But now, I'm in a project where the last programmer was a FreeBSD-guru, but not so good in PHP/MySQL, so they hired me to take over. So the project is hosted on a dedicated FreeBSD-server, and I need to get all sftp-accounts and change them. How do I do that? I have root-access with PuTTY, and I know the basic commands, but I don't know where to start looking for account-settings. Is there anyone who knows how to do this?
I also need to reset the root-login to MySQL. I've only done this on Windows, and I'm not to comfortable testing without knowing. I found this guide: ...
View 1 Replies
View Related
Sep 3, 2006
I deleted my /var/log directory to clean up space, and now Exim won't work.
Can anyone please post the directory and subdirectory structure for /var/log on a FreeBSD system? I am hoping that with the right directories, the files will rewrite themselves...
View 0 Replies
View Related
Jan 8, 2009
I may soon be in the market for a VPS, and would like a fully managed FreeBSD VPS. Preferably with either DirectAdmin or Plesk.
View 3 Replies
View Related
May 30, 2009
I have install FreeBSD and i use Nginx for run my website on this webserver.
All working good and the server running from 1/2month..
Today when i visits my site i have see Nginx Gateway Error 502..
and from shell i run top command and all processor are using 0% of cpu but use the normal ram..
all is stopped..
but i don't know why and how happen..
Any people have the same error?
I think i do create a monitor script and when appen just reboot the server (i have solve this problem rebooting the server each 502 error)
View 4 Replies
View Related
Jul 8, 2009
which is better for cPanel and more quality?
centOS
freeBSD?
View 1 Replies
View Related
Apr 13, 2008
I am about to sign up for a dedicated server, and I have three options to choose from... actally, 6 options:
FEDORA C7 BASIC
FEDORA C7 PLESK 8.3
FREEBSD 6.3 BASIC
FREEBSD 6.3 PLESK 8.3
CENTOS 5.1 BASIC
CENTOS 5.1 PLESK 8.3
Which one should you pick and (most importantly) why?
View 14 Replies
View Related
Sep 19, 2008
I was playing with a backup machine I have today. It's been running FreeBSD 6.3 a while now. I just realised today that CPUTYPE in make.conf was set wrong. When I set it to what it should be, according to the list of valid values, I got odd errors during world and kernel rebuilds, along with some from some ports. I googled it and found many people do not suggest setting that directive in make.conf. May I ask if anybody has experience with this, and what impact it would have on my box should I remove the directive and recompile?
View 0 Replies
View Related