CentOS – Page 4 – WindowsTechs.com

Shell escaping vs. /etc/sudoers. What’s the difference?

Posted on September 20, 2020 by lord_sommersby

I am trying to grasp some basic principles of security in Linux (I used Centos 8.0 and Kali 2020 in the example below).
I found that providing you have an account in a particular system that is in the /et/sudoers and its entry is ALL=(ALL)… Continue reading Shell escaping vs. /etc/sudoers. What’s the difference?→

GPG Agent SSH Forward Pinentry

Posted on September 12, 2020 by ephemeric

I have GPG agent forwarding via SSH RemoteForward working, up to a point:

I can list my private and public keys on the remote host.

If I try to decrypt a file remotely, the PIN is prompted for but the text is stepped, garbled and the pas… Continue reading GPG Agent SSH Forward Pinentry→

Cant connect to OpenVPN [migrated]

Posted on September 3, 2020 by madial9663

I have configured OpenVPN server (v2.4.9) on Centos 8, and want to connect from Yealink phones. One of the Yealink boxes (W60B) is unable to connect due to the following error:
TLS error: Unsupported protocol. This typically indicates that… Continue reading Cant connect to OpenVPN [migrated]→

ModSecurity won’t apply rules – no error log entries [migrated]

Posted on August 8, 2020 by MarkHelms

I have a fresh installation of CentOS 8. I installed Apache 2.4.37 from the repo. Then installed the latest ModSecurity:
dnf install mod_security -y

Checked the installation
dnf info mod_security

Result:
Name : mod_security
Versi… Continue reading ModSecurity won’t apply rules – no error log entries [migrated]→

Cowrie (Honeypot) to not store passwords for certain username entries [closed]

Posted on July 14, 2020 by David Elkind

I have a honeypot setup on port 22 (using "cowrie"). I need certain usernames to be logged without passwords. So if someone logs in with the username "jack" and the password "passw0rd", it will only not log th… Continue reading Cowrie (Honeypot) to not store passwords for certain username entries [closed]→

generate CSR with SAN does not seem to work. on centos 8

Posted on May 22, 2020 by danidar

I have been trying to generate a CSR which includes a san of type OtherName.

the generated CSR does not seem to have the SAN field.

this is the configuration file:

distinguished_name = req_distinguished_name
[req_distinguished_name]
… Continue reading generate CSR with SAN does not seem to work. on centos 8→

ASLR doesn’t work?

Posted on May 10, 2020 by qwertyuiqwertyui

I have following code:

#include <stdio.h>
#include <stdlib.h>

int main()
{
int *ptr1 = malloc(16);
int val1 = 0x12345678;
printf(“stack: %p\nheap: %p\n”, &val1, ptr1);
return 0;
}

Compila… Continue reading ASLR doesn’t work?→

.htaccess File Changed – Question About Possible Breach Or Default Defense Mechanism

Posted on February 1, 2020 by jjonesdesign

Today I got reports about one of my websites becoming inaccessible. I’ve come to learn that at the time we were under DDOS attack.

After getting through that, the website started throwing a permission denied error, so I narrowed it down t… Continue reading .htaccess File Changed – Question About Possible Breach Or Default Defense Mechanism→

Can I test ssl connection locally with a valid certificate (CA) with local dns?

Posted on January 9, 2020 by TicJit

I have a wildcard valid certificate signed by Certificate Authority. Is it possible to test the https locally from the server without a registered DNS?

My idea is to bind the domain name with 127.0.0.1 in /etc/hosts.

The H… Continue reading Can I test ssl connection locally with a valid certificate (CA) with local dns?→

/var got mysteriously renamed in /var.1 on CentOS6 server [on hold]

Posted on November 1, 2019 by Alien Life Form

On one of our CentOS6 servers, /var got renamed to /var.1 tonight (around 3.24 am) and a new empty /var folder was created. Not surprisingly, it crashed soon after that.

Circumstances:

Over the last two days, we have been… Continue reading /var got mysteriously renamed in /var.1 on CentOS6 server [on hold]→