Collaborate Disseminate
There are many security issues that make your website vulnerable to SQL injection & there are many ways to prevent from being injected by hackers.
There are many companies that are heavily secured and
use many security t… Continue reading General prevention of SQL injection [on hold]
When hardening a LINUX system what command line tools would you remove first in order to make an attackers life really difficult?
I read a book about linux hardening (Hardening Linux by James Turnbull, 2005). The book suggests to remove the sync user. If I remove the sync user I am not able to call commands like ls and shutdown, because they are not fou… Continue reading Remove sync user to harden the system
During a Lynis audit I found this on a system that uses Fedora 28:
Checking Linux single user mode authentication WARNING
And under results I got:
No password set for single mode [AUTH-9308]
Rkhunter skips… Continue reading How can I set a password for single user mode?
I created a ecommerce site with a developer. He completed almost all his work but in the end we had some financial disagreements so our partnership ended in a bitter dispute. That developer threatened to hack my site using a … Continue reading protection from Backdoor hacks from disgruntled developer/ employee
I would like to modify Win OS banner to defeat OS detection from scanning tools like Nmap for example. Although, I know that Nmap does not take into account just the banner to do OS detection.
I am currently working with Ubuntu 16.04 , with an Intel CPU that supports TPM2 module.
I am trying to harden my boot-loader, i tried using trustedgrub2 fork that supports TPM2 , i understand that trustedgrub2 currently does… Continue reading securing Ubuntu bootloader using TPM
I’m designing a kiosk to use one-time SMS codes as a method of authentication. The method I’m using to generate codes happens inside of an Electron application running on a locked down kiosk, hardened and assembled by a Third… Continue reading Electron app generating one-time access codes vs server generated codes
Is there any risk in running ssh daemon with no root privilege using this method: how-can-i-make-this-daemon-init-run-as-a-non-root-user?
Debian Developer’s Best Practices for OS Security says the same thing:
• Starts th… Continue reading what are the disadvantages of running SSH daemon without root?
I work heavily with SSH and SFTP, to be specific between two machines, both of which have their SSH port open on a public IP address.
What are the toughest SSH daemon settings in terms of encryption, handshake, or other cryp… Continue reading What are the toughest SSH daemon settings in terms of encryption, handshake, or other cryptographic settings?