Collaborate Disseminate
I am trying to judge the security of a web app and I have the sample output below from nmap. But I’m not really sure how to properly interpret it.
Is it merely a printout of all the CVEs for this version of Apache2 (cpe:/a:apache:http_serv… Continue reading How to interpret the output of nmap "vulners"
We currently have a server that blocks all connections using iptables, and we have to whitelist an IP expressly in order to be able to access the server remotely.
The current setup looks like this (simplified):
Chain INPUT … Continue reading Block TCP and UDP with iptables
We currently have a server that blocks all connections using iptables, and we have to whitelist an IP expressly in order to be able to access the server remotely.
Essentially, the first rule allows the whitelisted IPs (inclu… Continue reading Can iptables be hacked / circumvented
I have a newly installed (and updated) Centos 7 server I use for testing.
I implemented RSA key based authentication for ssh and set PermitRootLogin to without-password
When I logged on this morning I ran netstat -plant and… Continue reading How secure is ssh key-based authentication
I’m still new to Asterisk/Elastix and apologize if this question is misplaced.
Recently one of our larger clients was hacked and we remedied the situation by enabling fail2ban. It seemed to have stopped the hackers from tryi… Continue reading Elastix Asterisk CLI flooded with chan_sip.c / sip_xmit warnings
I’m still new to Asterisk/Elastix and apologize if this question is misplaced.
Recently one of our larger clients was hacked and we remedied the situation by enabling fail2ban. It seemed to have stopped the hackers from trying to register… Continue reading Elastix Asterisk CLI flooded with chan_sip.c / sip_xmit warnings