Measures Of Penetration Test
Jul 24, 2009I hope all are fine and doing good, can somebody provide detail guide line how to test Penetration testing on linux servers and what security measures are required in against of that.
View 8 Replies
ADVERTISEMENT
The Forum Is Exposed To Penetration!
Aug 10, 2008The Forum is exposed to penetration
The Forum is exposed to penetration by hackers
Is there a forum to provide protection against the amount of material?
Is there a company providing guaranteed security for the forum?
What Anti-Fraud Measures Do You Use
Sep 30, 2009Over the past number of years there has been an obvious increase in credit card fraud and identity theft.
Our policies have always tried to stay a step ahead but it seems no matter what is done the occasional fraudster manages to squeeze through, costing us a lot of money. At one some point in early 2009, it got as bad as 60% of the orders we received. It ended up eating a LOT of our time just to go through each order and verify them as best we could.
What methods do you use to fight fraud?
I'll start with some of the things we do.
- Require CVV code on the credit card
- We call the customer's telephone number and verify with them. - Verify the telephone number matches the region of the address they provide
- Require the CC issuing Bank's name and number
- We often require the customer to fax a signed credit card authorization form
- GeoIP matches location of the address in the order
Obviously the big challenge is proving that the person placing the order is the actual owner of the card. I've received the correct CVV, spoken with the customer on the phone number, had the phone number match the region... non-US so I wasn't able to verify their telephone details with the issuing bank. Had the GeoIP match and still found out it was fraud.
On a side note: Am I the only one that feels banks and those issuing credit cards need to take more responsibility for a system that's clearly broken? Even after going through the process above, it can still be fraud with a chargeback issued. In those cases, the company loses the money they made, pay a fee to the payment provider, lost time for Sales Reps and Tech Reps, and of course they lose money on hardware, electricity and bandwidth.
Server Hacked - What Preventative Measures To Use
Jan 26, 2008I am renting a cheap Linux server merely to test and learn as much as possible.
The server itself is completely unsecured, as I am doing everything one at a time to learn as much as possible.
Now, a few days ago I noticed someone with a US based IP had logged into my root account. The bash log mentioned something about some network commands and I traced the IPs to my server datacenter, so no big deal I thought, but I changed the root password anyways.
Today it happened again, but this time the bash log was cleared, and in my /var/www/html folder I found a suspicious folder with eBaywhateverapi.dll in it. I deleted it, seeing as this was not normal, which led me to the conclusion my server was hacked. Since it's a cheap test server, it's no loss at all, I'm just glad it's not the server I use for my customers!
So, what I did now was this:
Removed all suspicious folders in /home
Turned off root login (made a new account which I use to su into root)
Changed the SSH port
Changed root password
Will this be enough for now, or should I do anything else?
I'm running CentOS 4
What Sort Of Security Measures Need To Placed For A Non Webhosting Server
Jan 20, 2008Currently configuring my VPS, have been for a while now, and am relooking at the security I'll need on it. The VPS will be running something similar to a CMS/Forum site and won't be offering webhosting. Alot of the security measures around here are webhosting orientated. What security procedures does everyone suggest for my situation?
I've got APF, BFD and restricted root SSH access. Is there anything else?
Test VPS
Jul 17, 2008Is there a simple windows based tool that we can test two websites on two different VPSs?
Basically just load and what not, but some of the tools we have found are a bit intimidating.. We are just looking for something easy to setup and use.
Test An SSL
May 21, 2007Is there a way to test an SSL to make sure the page really is encrypted?
View 3 Replies View RelatedVPS Test
Nov 25, 2007I have 2 VPS in 2 differents networks. One of these 2 VPS have a WHM/Cpanel load time very high to me. I already contact with my hostiing company support and I told the problem. Support saied that the problem is with my ISP connection. I agree that is possible my ISP issue, but I already test with 3 ISP connections diferents.
So I would like a help to test it. I am creating 2 dummys reseller accounts in my 2 VPSs and I inform the WHM login details here. So I would like that you access both WHMs and try to create a new account and tell me the time to finish the creation process.
From my end one account takes around 90 sec and other take onlu 13 sec.
how much time do you give in creation account on the followinf 2 dummys accounts?
How To Test Squid
Apr 5, 2009I just installed Squid V3. I set up putty to ssh socks proxy to my vps that I installed squid on.
Here is a snippet of my cache.logs, but there is no cache log of websites I have visited. The access.log is empty.
How to I tell if squid is working?
Quote:
2009/04/04 22:52:37| Starting Squid Cache version 3.0.STABLE13-20090405 for i686-pc-linux-gnu...
2009/04/04 22:52:37| Process ID 9886
2009/04/04 22:52:37| With 1024 file descriptors available
2009/04/04 22:52:37| Performing DNS Tests...
2009/04/04 22:52:37| Successful DNS name lookup tests...
2009/04/04 22:52:37| DNS Socket created at 0.0.0.0, port 36048, FD 7
2009/04/04 22:52:37| Adding nameserver 208.67.222.222 from /etc/resolv.conf
2009/04/04 22:52:37| Adding nameserver 208.67.220.220 from /etc/resolv.conf
2009/04/04 22:52:37| Unlinkd pipe opened on FD 12
2009/04/04 22:52:37| Swap maxSize 102400 KB, estimated 7876 objects
2009/04/04 22:52:37| Target number of buckets: 393
2009/04/04 22:52:37| Using 8192 Store buckets
2009/04/04 22:52:37| Max Mem size: 8192 KB
2009/04/04 22:52:37| Max Swap size: 102400 KB
2009/04/04 22:52:37| Version 1 of swap file with LFS support detected...
2009/04/04 22:52:37| Rebuilding storage in /usr/local/squid/var/cache (CLEAN)
2009/04/04 22:52:37| Using Least Load store dir selection
2009/04/04 22:52:37| Set Current Directory to /usr/local/squid/var/cache
2009/04/04 22:52:37| Loaded Icons.
2009/04/04 22:52:37| Accepting HTTP connections at 0.0.0.0, port 8080, FD 14.
2009/04/04 22:52:37| Accepting ICP messages at 0.0.0.0, port 3130, FD 15.
2009/04/04 22:52:37| HTCP Disabled.
2009/04/04 22:52:37| Ready to serve requests.
2009/04/04 22:52:37| Done reading /usr/local/squid/var/cache swaplog (0 entries)
2009/04/04 22:52:37| Finished rebuilding storage from disk.
2009/04/04 22:52:37| 0 Entries scanned
2009/04/04 22:52:37| 0 Invalid entries.
2009/04/04 22:52:37| 0 With invalid flags.
2009/04/04 22:52:37| 0 Objects loaded.
2009/04/04 22:52:37| 0 Objects expired.
2009/04/04 22:52:37| 0 Objects cancelled.
2009/04/04 22:52:37| 0 Duplicate URLs purged.
2009/04/04 22:52:37| 0 Swapfile clashes avoided.
2009/04/04 22:52:37| Took 0.02 seconds ( 0.00 objects/sec).
2009/04/04 22:52:37| Beginning Validation Procedure
2009/04/04 22:52:37| Completed Validation Procedure
2009/04/04 22:52:37| Validated 25 Entries
2009/04/04 22:52:37| store_swap_size = 0
2009/04/04 22:52:38| storeLateRelease: released 0 objects
2009/04/04 22:59:06| Squid is already running! Process ID 9886
Speed Test
Apr 23, 2009I recently setup WAMP on my dedicated, and I'm unsure if the slow download speed is from WAMP or something else I need to remove from the dedicated. Might just be the distance I am from the dedicated because it's hitting 88.74Mb/s down and 71.19Mb/s up from a local city.
It's located in Kansas city, MO.
208.94.241.242/speedtest/
How To Test A Port
Sep 28, 2009How can i test to see if a port on my box is open or not, can i ping it with the ip and the port?
View 4 Replies View RelatedHow Can I Test Vps Speed
Jun 26, 2009I ordered my first vps and uploaded a 1 page web site with a few graphics. I browsed to the web site and it took longer than normal to load the entire site with all graphics.
Is there a way that I can test my vps account speed?
Can I Have A Speed Test
Sep 17, 2008Can i have a speed test from different locations. [url]
View 14 Replies View RelatedUK2 Speed Test
Mar 8, 2008Can a few people try to download the test file in [url] and tell me what speeds you get and from which location?
I'm comparing UK2 and RapidSwitch. I'm interested to know the d/l speeds from East/West coast USA, Asia, Australia. I'm assuming Europe would be fast.
Where Do You Have Your Test Server
Mar 3, 2008We are a small development team mostly coding in php/mysql as an unpaid hobby. Anyways yesterday our test server had hardware problems and to get a decent new one would be $300. Well this seems a lot to ask for someone that does get any compensation for it. So we are looking for some cheap way of providing a test server. We need at least a way that provides svn, apache w/ php and mysql. We tried to use the webserver, but the head dev didnt like the idea. Any suggestions?
The three devs are in charge of wcreplays.com .
Test Robot.txt
Jul 23, 2008I want to stop cataloging of all PDF files on my site, can this be done using wild cards through Robot.txt?
What is a good way to test to make sure that the instructions in the Robot.txt are working?
Test PING
Oct 26, 2008i think 216.245.208.x and 216.245.215.x DOWN, but limestonenetworks tell me :"problems well outside of our network, and I would highly suggest contacting your ISP for support on this matter" ....
View 9 Replies View RelatedTest Files
Jul 5, 2007I decided this probably belongs in its own thread. It's also posted in Colo Suggestions/Help. Maybe mods can remove it there?
I think it'd be nice to have a thread with test files from a bunch of different colo providers. In particular I'm looking for ColoPronto and Colo4Dallas, but hopefully people will post from data centers all over to help others that are shopping around as well.
I have tested the Colostore test file[url] from a few connections I readily have access to.
My home Comcast cable connection downloads at about 480kbps.
My work T1 connections downloads about the same. But my works Comcast cable connection can only download it at about 40kbps, and it takes well over an hour to download.
Does anyone have any insight as to why this may be?
Also, does anyone know where I can find a test file for ColoPronto and Colo4Dallas?
Anyone willing to post one for me if there are none available from the DC? I would really like to test speeds.
Low Port Test-How To Fix
Sep 4, 2007I got problem with my DNS. The error shows Low port test. Why I got this error?
One more question, If my DNS fail in Open DNS servers section, what will happen with my domain?
Can Anyone Run A Smtp Test For Me
Sep 12, 2007halekulanicorp.com
just need a simple smtp test......
How I Do My VPS Speed Test
Aug 31, 2007I noticed that lately there are tons of cheap vps offers.
Before you pay for it ahead for next 5 years, test it.
From my experience with vpses going years back i do it this way.
Install Webmin if you do not have it.
Set it for https and MCS.Linux Them, one with all graphics.
Run WHT benchmark.
If you get a score 60+ great, test several times (day, night etc.).
Login into Webmin in https mode.
Go to others and click on System and Server Status.
If you get a full update under 8 sec that is good.
Reload few times and time it again.
In my opinion you are testing connectivity as well and not
only vps itself.
Otherwise i think you will be looking for another vps soon.
Speed Test
Jul 25, 2007I've tried googling, searching on webhosting talk for 100meg test file, speed test for linux server, ect.. ect.. ect.. and I cant seem to find a damn thing.
Anyone have a recommendation for a place to download a 100mb test file to test out my speed? I'm looking for a server on a gig line.
How Do I Test My VPS Bandwidth
Aug 30, 2007How do I test to see if I am getting the bandwidth I am signed up for?
Right now I have a vps with futurehosting.biz IP: 75.126.49.194.
On their advertisements they say everyone will be on a 100mbit port.
However, I have never gotten speeds above 10mbit UNLESS I am downloading from another machine in the same datacenter:
dallas.futurehosting. biz/test100.zip*
When I try downloading from a machine outside the same building such as:
www .futurehosting.biz/test100.zip* (Their Chicago DC)
I never, ever get speeds over 10 mbit outside the same DC.
I opened up a ticket regarding this, and all they say over at future hosting is that Virtuozzo confirms it's a 100mbit link, and that other users in the node may be using the bandwidth at the same time.
The only explanation I can think of is that it truly is a 100mbit port, but is capped to 10mbit once it goes outside the datacenter. If this is the case, they should clearly state this in their advertisement. Or is this a common practice with VPS hosts?
* Links mangled because of the 5 post requirement....
How To Test Ports
Aug 13, 2007I'm behind the firewall on a public computer and all online port scan tests I've tried show that ALL ports on a computer I'm using are closed. Is this possible? I've been previously succesfully uploaded some files through cpanelproxy.net to get access to my site, for which opened port 80 was needed.
View 6 Replies View RelatedIt Possible To Test Own Server In My Home
Oct 28, 2009it possible to test own server in my home(only to test)
iam haveing centos 5.4 with vmware
need 2mpbs for testing it be good i think so
but only i haveing issue is ip(iam useing dynamic ips
it anyway to test as local server with dynamic ips?
Linux Download Test
Oct 7, 2009Anyone have a good download test in chicago other then FDC's?
I was told i was upgraded to a 1GBPS port for free by my host(from a 10mbit) which is sort of weird, i want to confirm. at this time FDC's 100MB file takes me about 3 seconds to download and downloads at 44.7M/s.
the file is too small for me to try and pull 1gbit, by that speed i have a 500mbit line odviosely but i want to test against something outside of FDC.
Corenetworks Speed Test
Apr 17, 2009Anyone got a 100mbit server at corenetworks that I could speed test from? The test file that I got from corenetworks was only able to give me about 500KB/sec so I think their server might only be 10mbit.
View 4 Replies View RelatedFastCGI Hello World Test?
Jun 20, 2009Just moved to a 1and1 managed server in which FastCGI is enabled.
But I'm having problems getting Movable Type to run under fastcgi - which has never been a problem before, even on shared hosts.
Is there a 'hello world'-type test for fastcgi - so I can check if it is enabled?
What Is The Best Way To Test The Speed Of A Server
Jun 3, 2009What is the best way to test the speed of a server?
CPU/processing wise, and not bandwidth wise?
Download Speed Test
Oct 16, 2009[url]
What download speed do you get
I have 100MB/Sec port and normally always get around 500-600kbps download speed with DedicatedNOW but today I am only getting around 170kbps
I have a 10mb connection and when downloading file from here [url]I get 1.2MB/sec download speed
I asked support to confirm if I had 100MB/sec port and got a reply with:
"Your server is on a 100mbps port:
-bash-3.2# ethtool eth0 |grep Speed:
Speed: 100Mb/s
-bash-3.2#"
Sounds like a local issue. I am able to download at:
Response: 226-File successfully transferred
Response: 226 32.674 seconds (measured here), 6.12 Mbytes per second
Gigabit Speed Test?
May 9, 2008if any of you know of a gigabit url, to where I can use wget to test the speed of my gigabit uplink?
View 14 Replies View Related