Archives

Redhat severe vunerability,RedHat Security Advisory RHSA-2010:0423

The remote host is missing updates announced in
advisory RHSA-2010:0423.
Kerberos is a network authentication system which allows clients and
servers to authenticate to each other using symmetric encryption and a
trusted third party, the Key Distribution Center (KDC).
A NULL pointer dereference flaw was discovered in the MIT Kerberos Generic
Security Service Application Program Interface (GSS-API) library. A remote,
authenticated attacker [...]

June 10th, 2010 | Category: Security | Leave a comment

Enable Security Port Auditing in Freebsd using Portaudit

A port called portaudit provides a system to check if installed ports are listed in a database of published security vulnerabilities. After installation it will update this security database automatically and include its reports in the output of the daily security run. If you get message like as follows
Vulnerability check [...]

May 7th, 2010 | Category: FreeBsd, Security | Leave a comment

securing apache webserver, apache security

Apache modules: Turn off modules you are not going to use. With past ssl exploits, those using this philosophy did not get burned.

Red Hat EL 5/CentOS 5 Apache 2.2: The configuration file /etc/httpd/conf.d/ssl.conf enables SSL by default. This file [...]

March 26th, 2010 | Category: Security | Leave a comment