Server – Page 29 – WindowsTechs.com

Have I been pwned? Public SSH with key

Posted on March 31, 2020 by Harry

I have a dedicated server with public IP address, opened port 22 and fail2ban running. I am using root account (I know it is wrong but I have to) and I have disabled logins with password. I am using an RSA 4096 bit key with key password (1… Continue reading Have I been pwned? Public SSH with key→

Strict Transport Security (HSTS) HTTP Response Header Security Related Question

Posted on March 30, 2020 by Jase

I always thought HSTS headers were server specific, what reason would cause this header to not be invoked across certain URI endpoints i.e. HSTS header is in response to the root direct /, as well as /contact/doctors, but not in /contact/n… Continue reading Strict Transport Security (HSTS) HTTP Response Header Security Related Question→

How can I create a secure auto-login? (java)

Posted on March 27, 2020 by F_Schmidt

I am writing a server-client program. When a new user installs the program and opens it for the first time, he has to enter a password. The password in combination with an email address is needed to authenticate to the server via SSLSocket… Continue reading How can I create a secure auto-login? (java)→

What’s a great way to escalate privileges on a Linux server? [closed]

Posted on March 27, 2020 by Chili

What’s a great way to escalate privileges when you have a meterpreter session on a Linux system? The exploits I use to try to escalate privileges don’t work and when I use the upload command to try to upload a msfvenom payload I get the er… Continue reading What’s a great way to escalate privileges on a Linux server? [closed]→

Can attackers see which IPs a server is connected to? [duplicate]

Posted on March 26, 2020 by katoge

can an attacker know without being in my area which clients my server is handling?
How do I protect against others remotely sniffing my servers network?

Continue reading Can attackers see which IPs a server is connected to? [duplicate]→

How to enable LDAP signing in Windows Server & Client Machines

Posted on March 25, 2020 by AshishMohta@TWC

LDAP signing is an authentication method in Windows Server that can improve the security of a…

For more visit TheWindowsClub.com. Continue reading How to enable LDAP signing in Windows Server & Client Machines→

Apache site down after getting AH02032 error

Posted on March 12, 2020 by Hafzal BZ

Apache site down after getting AH02032 error, and automatically up if I restart apache or after some time(maybe 1-3 hours).
The Server setup is Xampp in Windows Server 2012
Many sites are hosted on the same server with virtual host setup,… Continue reading Apache site down after getting AH02032 error→

Is it more secure if I separate VPS into WebApp/MySQL VPS & separating WebApp projects into Admin/User projects

Posted on March 8, 2020 by PoundXI

If I want to deploy a Laravel WebApp using MySQL DB on a VPS like DigitalOcean, Vultr or similar platforms, should I separate the VPS into WebApp VPS and MySQL VPS? Is it more secure?
And what if I separate the Laravel project into AdminPr… Continue reading Is it more secure if I separate VPS into WebApp/MySQL VPS & separating WebApp projects into Admin/User projects→

How to identify IP from a UDP-based DoS

Posted on February 24, 2020 by Nihas

I’m running a Counterstrike server on UDP port 27015. I’m using Amazon AWS to host the game server. I have added only my friends’ IPs (about 50 of them) into a security group so the rest of the traffic is always blocked.
My enemy is spoofi… Continue reading How to identify IP from a UDP-based DoS→

Webserver blocking other servers but not clients

Posted on February 23, 2020 by xoox

I am currently pentesting a webserver and found out that its subdomain is blocked when pinged from another server (I tried pinging it w/ my Digital Ocean server and other ping tools from websites). But i can access its subdomain with my de… Continue reading Webserver blocking other servers but not clients→