To delete all currently stored alerts and related data in the ossec database execute these commands in MySQL Editor: truncate table alert; truncate table data; Bash Script: #!/usr/local/bin/bash # #Stop ossec, remove old alerts, start ossec echo “stopping ossec” /var/ossec/bin/ossec-control…
There are two config directives that controls Apache version. The ServerSignature directive adds a line containing the Apache HTTP Server server version and the ServerName to any server-generated documents, such as error messages sent back to clients. ServerSignature is set…
Download files wget wget Check the MD5 or SAH1 to make sure they are legit (Don’t skip!!) md5sum ossec-hids-latest.tar.gz cat ossec-hids-latest_sum.txt Extract the files from the tar tar zxvf ossec-hids-latest.tar.gz Cd into the directory and run the…
How do you check your website for vulnerabilities for free? Check out these sites that provide free vulnerability scans:
to fix this error: fseek() expects parameter 3 to be long os_lib_alerts.php SEEK_SET Line 842 in os_lib_alerts.php Reads: fseek($fp, $seek_place, “SEEK_SET”); It should actually be: fseek($fp, $seek_place, SEEK_SET);
Let’s get started detecting streams (ADS) What is an stream? An stream is essentially a hidden file within another file (.txt, .jpg, .mp3, .exe, etc) Why should I care? Files can contain malicious streams and compromise your machine Creating an…
Names You Need To Know in Data Security: Cleversafe This article is about a company called Cleversafe that has created a secure and redundant way to store enormous amounts of data. The article also explains why this technology is…
how to detect php backdoor ? (Note content is from ) Website security: How to find backdoor PHP shell scripts on a server This is supplemental information for a series of articles that begins at: Website security: what to do…
i just read a great article on how to browse the web securely with his creation of the “Secure Browsing Environment”. The author shows you how to: Spin up your own linux virtual machine instance of WattOS Set up shared…
How to install fail2ban on ubuntu 10.10 Install Fail2ban # apt-get update # apt-get install fail2ban List IPtables to see if it is running # iptables -L You will see this at bottom of IPTables: Chain fail2ban-ssh (1 references) target…
