http://howtoforge.com/taxonomy/term/9/0 en http://www.howtoforge.com/themes/htf_glass/images/howtoforge_logo_glass_blue.gif http://howtoforge.com/taxonomy/term/9/0 http://howtoforge.com/dansguardian-with-multi-group-filtering-and-squid-with-ntlm-auth-on-debian-etch <p><b>How To Install And Configure Dansguardian With Multi-Group Filtering And Squid With NTLM Auth On Debian Etch</b></p> <p>This how-to describes how to install and configure Dansguardian with multi-group filtering, Squid with NTLM auth, ipmasq, and dnsmasq to provide a full internet gateway solution for small to medium sized networks. This how-to requires two NICs in order to preform firewalling and transparent proxying.</p> <a href="http://howtoforge.com/dansguardian-with-multi-group-filtering-and-squid-with-ntlm-auth-on-debian-etch" title="Read the rest of this posting." class="read-more">Read more...</a> Debian Samba Security Wed, 16 Jul 2008 19:21:47 +0200 http://howtoforge.com/dansguardian-with-multi-group-filtering-and-squid-with-ntlm-auth-on-debian-etch http://howtoforge.com/dansguardian-with-multi-group-filtering-and-squid-with-ntlm-auth-on-debian-etch#comment http://howtoforge.com/encrypting-the-system-manually-upon-installation-ubuntu8.04 <p><b>HOWTO: Encrypt The System Manually Upon Installation (Ubuntu 8.04)</b> </p><p>This tutorial describes how you can encrypt an Ubuntu 8.04 (Hardy Heron) system right during the initial installation.<br /></p><a href="http://howtoforge.com/encrypting-the-system-manually-upon-installation-ubuntu8.04" title="Read the rest of this posting." class="read-more">Read more...</a> Ubuntu Security Tue, 15 Jul 2008 17:27:33 +0200 http://howtoforge.com/encrypting-the-system-manually-upon-installation-ubuntu8.04 http://howtoforge.com/encrypting-the-system-manually-upon-installation-ubuntu8.04#comment http://howtoforge.com/removing-activex-control-codes-from-webpages-with-safesquid <p><b>Enhance Security By Removing ActiveX Control Codes From Web Pages With SafeSquid Proxy Server</b></p> <p>Allowing free access to ActiveX Control content, can be a security risk. ActiveX can be used to deposit spyware, adware and other malware into users system, when they visit innocent looking websites. A google search for <span class="system">dangers of activex</span> would be very informative. The <span class="system">Rewrite Document</span> feature of SafeSquid - Content Filtering Internet Proxy, allows you to alter the html codes of a web page on the fly, and send the modified content to the requesting user. This feature can be used to search for ActiveX codes in web pages served by non-trusted websites, remove or replace them with some other codes, and serve the modified web pages to the user.</p> <a href="http://howtoforge.com/removing-activex-control-codes-from-webpages-with-safesquid" title="Read the rest of this posting." class="read-more">Read more...</a> Security Tue, 08 Jul 2008 13:33:08 +0200 http://howtoforge.com/removing-activex-control-codes-from-webpages-with-safesquid http://howtoforge.com/removing-activex-control-codes-from-webpages-with-safesquid#comment http://howtoforge.com/automatically-unlock-luks-encrypted-drives-with-a-keyfile <p><b>HOWTO: Automatically Unlock LUKS Encrypted Drives With A Keyfile</b></p> <p>This howto shows how to unlock multiple devices in the intial ramdisk remotely. I suggest to use a keyfile for automatic unlocking. The keyfile should be stored in the normally encrypted root partition - so you still have to unlock that one. During boot process it will then be used to unlock all the other devices.</p> <a href="http://howtoforge.com/automatically-unlock-luks-encrypted-drives-with-a-keyfile" title="Read the rest of this posting." class="read-more">Read more...</a> Security Mon, 07 Jul 2008 19:33:28 +0200 http://howtoforge.com/automatically-unlock-luks-encrypted-drives-with-a-keyfile http://howtoforge.com/automatically-unlock-luks-encrypted-drives-with-a-keyfile#comment http://howtoforge.com/block-spammers-hackers-with-mod_defensible-on-apache2-debian-etch <p><b>How To Block Spammers/Hackers With mod_defensible On Apache2 (Debian Etch)</b></p> <p>mod_defensible is an Apache 2.x module intended to block spammers/hackers/script kiddies using DNSBL servers. It will look at the client IP and check it in one or several DNSBL servers and return a 403 Forbidden page to the client. This guide shows how to install and use it with Apache 2 on a Debian Etch server.</p> <a href="http://howtoforge.com/block-spammers-hackers-with-mod_defensible-on-apache2-debian-etch" title="Read the rest of this posting." class="read-more">Read more...</a> Debian Apache Security Sun, 06 Jul 2008 17:19:10 +0200 http://howtoforge.com/block-spammers-hackers-with-mod_defensible-on-apache2-debian-etch http://howtoforge.com/block-spammers-hackers-with-mod_defensible-on-apache2-debian-etch#comment http://howtoforge.com/how-to-set-up-shorewall-firewall-on-centos-5.1 <p><b>How To Set Up Shorewall (Shoreline) 4.0 Firewall On CentOS 5.1</b></p> <p>This tutorial will walk you through setting up Shorewall (Shoreline) 4.0 firewall on CentOS 5.1 , this can easily be adapted to any other Linux distribution out there.</p> <a href="http://howtoforge.com/how-to-set-up-shorewall-firewall-on-centos-5.1" title="Read the rest of this posting." class="read-more">Read more...</a> CentOS Security Wed, 02 Jul 2008 20:32:59 +0200 http://howtoforge.com/how-to-set-up-shorewall-firewall-on-centos-5.1 http://howtoforge.com/how-to-set-up-shorewall-firewall-on-centos-5.1#comment http://howtoforge.com/blocking-cookies-from-unwanted-websites-with-safesquid-proxy-server <p><b>How To Block Cookies From Unwanted Websites With SafeSquid Proxy Server</b></p> <p>Basically, cookies are pieces of information, usually personal preferences, that are stored into a visitors system, when they visit a website. The next time the visitor accesses the same website, the cookie is transferred from the visitors system to the website, and his preferred content is displayed to him. Cookies are also used to allow a visitor to log into his personal account on a website. Although, not always dangerous, many advertising and marketing websites gather personal information, without the users knowledge, and use this information to display especially targeted marketing ads and banners.</p> <a href="http://howtoforge.com/blocking-cookies-from-unwanted-websites-with-safesquid-proxy-server" title="Read the rest of this posting." class="read-more">Read more...</a> Security Tue, 01 Jul 2008 13:40:02 +0200 http://howtoforge.com/blocking-cookies-from-unwanted-websites-with-safesquid-proxy-server http://howtoforge.com/blocking-cookies-from-unwanted-websites-with-safesquid-proxy-server#comment http://howtoforge.com/bash-script-for-configuring-iptables-firewall <B> <H3 editor_id="mce_editor_0">About the Script:</h3></b> <P>This script is about to build a firewall in Linux OS by using <B>iptables</b>, the user only needs to follow and answer the simple and easy steps and the script will generate the user specified iptables rule in its original form.</p> <P editor_id="mce_editor_0">I HAVE TESTED THE SCRIPT ON PCLINUXOS, FEDORA-9, DREAM_LINUX, UBUNTU-8.</p> <P editor_id="mce_editor_0">This is my iptables Version 1.0 (USMAN AKRAM - Lucky)</p><a href="http://howtoforge.com/bash-script-for-configuring-iptables-firewall" title="Read the rest of this posting." class="read-more">Read more...</a> PCLinuxOS Security Shell Thu, 26 Jun 2008 13:58:49 +0200 http://howtoforge.com/bash-script-for-configuring-iptables-firewall http://howtoforge.com/bash-script-for-configuring-iptables-firewall#comment http://howtoforge.com/secure-postgresql-using-two-factor-authentication-from-wikid <p><b>How To Secure Postgresql Using Two-Factor Authentication From WiKID</b></p> <p>Databases are the key repository for critical data.&nbsp; If you are storing information that needs to be kept secure from prying eyes, especially credit card or personally identifiable information (PII) you might be required to control access using two-factor authentication.&nbsp; This tutorial demonstrates how to secure Postgresql with two-factor authentication from WiKID.</p> <a href="http://howtoforge.com/secure-postgresql-using-two-factor-authentication-from-wikid" title="Read the rest of this posting." class="read-more">Read more...</a> Linux Security Tue, 24 Jun 2008 17:00:54 +0200 http://howtoforge.com/secure-postgresql-using-two-factor-authentication-from-wikid http://howtoforge.com/secure-postgresql-using-two-factor-authentication-from-wikid#comment http://howtoforge.com/intrusion-detection-for-php-applications-with-phpids <p><b>Intrusion Detection For PHP Applications With PHPIDS</b></p> <p>This tutorial explains how to set up PHPIDS on a web server with Apache2 and PHP5. PHPIDS (PHP-Intrusion Detection System) is a simple to use, well structured, fast and state-of-the-art security layer for your PHP based web application. The IDS neither strips, sanitizes nor filters any malicious input, it simply recognizes when an attacker tries to break your site and reacts in exactly the way you want it to. Based on a set of approved and heavily tested filter rules any attack is given a numerical impact rating which makes it easy to decide what kind of action should follow the hacking attempt. This could range from simple logging to sending out an emergency mail to the development team, displaying a warning message for the attacker or even ending the user’s session.</p> <a href="http://howtoforge.com/intrusion-detection-for-php-applications-with-phpids" title="Read the rest of this posting." class="read-more">Read more...</a> PHP Security Sun, 22 Jun 2008 18:17:22 +0200 http://howtoforge.com/intrusion-detection-for-php-applications-with-phpids http://howtoforge.com/intrusion-detection-for-php-applications-with-phpids#comment http://howtoforge.com/block-ads-and-banners-in-safesquid-proxy-server <p><b>How To Block Ads And Banners In SafeSquid Proxy Server</b></p> <p>Ads and banners not only unnecessarily consume bandwidth, but also distract users, and can be exceedingly irritating at times. Few ads and banners keep rotating and fetching new contents, and keep consuming bandwidth in the background.</p> <a href="http://howtoforge.com/block-ads-and-banners-in-safesquid-proxy-server" title="Read the rest of this posting." class="read-more">Read more...</a> Security Security Fri, 06 Jun 2008 12:01:26 +0200 http://howtoforge.com/block-ads-and-banners-in-safesquid-proxy-server http://howtoforge.com/block-ads-and-banners-in-safesquid-proxy-server#comment http://howtoforge.com/control-download-of-files-and-mime-types-in-safesquid-proxy-server <p><b>How To Control Download Of Files And Mime Types In SafeSquid Proxy Server</b></p> <p>Administrators regularly find themselves in troubled situations, when irresponsible users waste their productive time and Internet bandwidth, on online music, radio, video or downloading large, non-productive contents. They also, knowingly or unknowingly, put other serious users to inconvenience and put the network at risk.&nbsp; Administrators can avoid such situations by controlling what content is allowed or denied, and when.</p><a href="http://howtoforge.com/control-download-of-files-and-mime-types-in-safesquid-proxy-server" title="Read the rest of this posting." class="read-more">Read more...</a> Security Mon, 02 Jun 2008 10:57:18 +0200 http://howtoforge.com/control-download-of-files-and-mime-types-in-safesquid-proxy-server http://howtoforge.com/control-download-of-files-and-mime-types-in-safesquid-proxy-server#comment http://howtoforge.com/add-wikid-two-factor-authentication-to-astaro-security-gateway <p><b>How To Add WiKID Two-Factor Authentication To The Astaro Security Gateway</b></p> <p>Astaro is a very popular Linux-based "all-in-one" security appliance offering spam filtering, malware protection, firewall, VPN, etc. The WiKID Strong Authentication Server is a dual-source two-factor authentication system. PINs are encrypted on a software token and sent to the WiKID server. If the PIN is correct, the encryption valid and the account active, a one-time password is generated, encrypted and returned to the user's token where it is decrypted and presented for use with a network-based services. This document will show how to add WiKID two-factor authentication to the Astaro Security Gateway version 7 using Radius.</p> <a href="http://howtoforge.com/add-wikid-two-factor-authentication-to-astaro-security-gateway" title="Read the rest of this posting." class="read-more">Read more...</a> Security Fri, 16 May 2008 14:20:39 +0200 http://howtoforge.com/add-wikid-two-factor-authentication-to-astaro-security-gateway http://howtoforge.com/add-wikid-two-factor-authentication-to-astaro-security-gateway#comment http://howtoforge.com/setting-up-truecrypt-5.1a-on-debian-etch-gnome <p><b>Protect Your Files With TrueCrypt 5.1a On Debian Etch (GNOME)</b></p> <p>This document describes how to set up TrueCrypt 5.1a on Debian Etch (GNOME). Taken from the TrueCrypt page: "TrueCrypt is a software system for establishing and maintaining an on-the-fly-encrypted volume (data storage device). On-the-fly encryption means that data are automatically encrypted or decrypted right before they are loaded or saved, without any user intervention. No data stored on an encrypted volume can be read (decrypted) without using the correct password/keyfile(s) or correct encryption keys. Entire file system is encrypted (e.g., file names, folder names, contents of every file, free space, meta data, etc)."</p> <a href="http://howtoforge.com/setting-up-truecrypt-5.1a-on-debian-etch-gnome" title="Read the rest of this posting." class="read-more">Read more...</a> Debian Desktop Security Sun, 11 May 2008 19:12:19 +0200 http://howtoforge.com/setting-up-truecrypt-5.1a-on-debian-etch-gnome http://howtoforge.com/setting-up-truecrypt-5.1a-on-debian-etch-gnome#comment http://howtoforge.com/granular-bandwidth-management-rules-in-safesquid-proxy-server <p><b>How To Configure Granular Bandwidth Management Rules In SafeSquid Proxy Server</b></p> <p>Administrators can use SafeSquid to granularly distribute bandwidth across the network, depending on user, group, website being visited, mime or file type being accessed, and time / date range. This is achieved by defining the desired situation, by creating a profile under the Profiles section, and then allocating a specific bandwidth (QoS) to that profile.</p> <a href="http://howtoforge.com/granular-bandwidth-management-rules-in-safesquid-proxy-server" title="Read the rest of this posting." class="read-more">Read more...</a> Security Thu, 08 May 2008 14:11:47 +0200 http://howtoforge.com/granular-bandwidth-management-rules-in-safesquid-proxy-server http://howtoforge.com/granular-bandwidth-management-rules-in-safesquid-proxy-server#comment