Collaborate Disseminate
I’m building a server that will build images directly from Dockerfile:
docker build -t arbitrarydocker .
This docker file will be built on the same server as other client Dockerfiles, which may have secrets. How can I lock… Continue reading How to build arbitrary Dockerfile Images Without Compromising Host
Today we saw traffic going from CentOS servers to a Tor exit node. This caused some raised eyebrows and led us to investigate what was going on.
In the end it turned out that this exit node also acts as a CentOS repository m… Continue reading Tor exit node as CentOS mirror
My Centos7 firewalld has TCP ports 8083, 8086, and 5000 open. I don’t recall opening them, except for maybe 5000 when first learning about firewalld.
Are there any ports that might come out of the box open? If not, can you… Continue reading Are there open by default ports with Centos 7’s firewalld?
I have a newly installed (and updated) Centos 7 server I use for testing.
I implemented RSA key based authentication for ssh and set PermitRootLogin to without-password
When I logged on this morning I ran netstat -plant and… Continue reading How secure is ssh key-based authentication
I saw it here that CentOS have no official support for OVAL security definitions(patch, vulnerabilities).
Based on what I observe at oval.mitre.org, it looks like they don’t even have a vulnerability definition for CentOS 7…. Continue reading Does anybody know if CentOS have official support for OVAL definitions?
i’ve an android app with ssl pinned it was working fine but after i’ve renewed the SSL now its throwing exception
javax.net.ssl.SSLHandshakeException:
java.security.cert.CertPathValidatorException: Trust anchor for
c… Continue reading Android pinning SSL handshake Exception after SSL renewal of website
My secondary authoritative DNS server (centos 7 – bind 9.9 hosted in Microsoft Azure) is marked as Open Zone Transfer…
although I’ve added the line “recursion no” in /etc/named.conf:
This is my options section in the serve… Continue reading Slave DNS server is Open Zone Transfer [migrated]
After accidentally running “./CA newca” from /etc/pki/tls/misc, I noticed a few files getting updated in /etc/pki/CA, and possibly more. But there weren’t any prompts when running the command like there normally is. I meant to run the “./CA -sign” command instead to add to the current CA. Will this have any consequences? I’ve created a new CA in the past, and I’ve always had to remove these files, yet none of these got changed, but that doesn’t necessarily mean “other” files don’t get updated when creating a new CA.
# rm –f /etc/pki/CA/*
# rm –f /etc/pki/CA/private/cakey.pem
# rm –f /etc/pki/CA/newcerts/*
# rm –f /etc/pki/tls/misc/newreq.pem
# rm –f /etc/pki/tls/misc/newcert.pem
Here are the files that got updated:
/etc/pki/CA/serial
/etc/pki/CA/index.txt.old
/etc/pki/CA/index.attr
/etc/pki/CA/index.txt
we’ve got an abuse mail to our server that says ‘your server is attempting to hack ssh of another server etc…’.
Then we’ve checked our server and in History command we’ve seen some logs as shown below:
324 /bin/busybo… Continue reading Bot called "gweerwe323f" accesing ssh?
When my CentOS 7 Apache web server was compromised recently, which hosts multiple sites, a script was uploaded to one of the sites and then used to add files to any other sites on the server that had writable directories. So,… Continue reading Preventing Website Directory Listing