DNS is a very important part in any Network. Main objective of securing DNS includes secure exchange of data between DNS servers. Securing DNS queries, Zone transferes and DNS updates can be included in securing DNS. Here, we have mentioned two methods to secure DNS. ie, Securing dns through chroot and by editing named.conf. Please make sure that you have taken the backup of named.conf 1. Securing dns through chroot :- Chroot function is a powerfull mechanism to secure the system. Chroot command uses a chroot() system call.
August 2012
Check for the current version of apache installed on the server and make sure that the apache development tools have been installed on the server (i.e. httpd-devel package) using the command rpm -qa | grep httpd-devel In case the apache development tools are not installed on the server, install the package via yum yum install httpd-devel The devel package is necessary for addition of extra modules to apache ( since apxs [apache extension tool] comes with httpd-devel. Before installation of mod_security, ensure that the c (apache module) is installed on …
Remote server configuration 1. Edit the /etc/my.cnf file in the remote server and add the following line somewhere under [mysqld] in the my.cnf file bind-address=<IP address of the remote server> 2. Restart mysql on the server Granting privileges for database:: In order to access a database ‘abc’ on the remote server from another machine, we need to add sufficient privileges for a user in the machine from which the connection is made. i.e. from the mysql prompt ( use mysql command or mysql -u root -p to enter the prompt). …
As most of the mobile applications used today contain open source, 70% fail to comply with their respective licenses. From a recent survey conducted by OpenLogic, Inc., a leading provider of enterprise open source software support, announced that 71% of Android, iPhone, and iPad apps containing open source failed to comply with basic open source licensing requirements. They scanned 635 leading mobile applications in order to identify open source components and evaluate compliance with the relevant licenses. Applications that contain open source components are required to comply with the rules …
SSH is a tool for secure remote login over insecure networks. It provides an encrypted terminal session with strong authentication of both the server and client, using public-key cryptography. 1. Use Strong Passwords/Usernames choose passwords that contains: Minimum of 8 characters Mix of upper and lower case letters Mix of letters and numbers Non alphanumeric characters (e.g. special characters such as ! ” $ % ^ etc)
RAID stands for Redundant Array of Inexpensive Disks.The main purpose of raid is to increase logical capacity of storage devices used,improve read/write performance and ensure redundancy in case of a hard disk failure. Raid devices are marked by two letters and a number. Eg. md0,md1,md2. Raid is mostly used in large file servers where data accessibility is higher. Raid unit appears to be equivalent to a single large capacity disk drive. The remarkable benefit of disk array is that if any single disk in the RAID fails, the system and array still continues to function without …
Sometimes the website throughs the error “Deprecated: Function set_magic_quotes_runtime() is deprecated in /home/user/public_html/bootstrap.php on line 56”. You can fix the easily by following the steps below. Well, it happens when Server upgrades with PHP 5.3. Problem is solved by adding this function and including a brace in the 56th line !! if(version_compare(PHP_VERSION, ‘5.3.0’, ‘<‘)) { set_magic_quotes_runtime(0); } If you require help, contact SupportPRO Server Admin
Sometime you may get the error “Error : Login failed because your username or password was entered incorrectly.”” while accessing horde/squirel mail. You can easily fix this error by following the steps bellow. 1. Set a FQDN hostname like server.abc.com which should have a DNS A entry. 2. Take a backup of /etc/userdomains 3. rm -f /etc/userdomains 4. /scripts/updateuserdomains or /usr/local/cpanel/scripts/updateuserdomains –force The /etc/localdomains file should includes server.abc.com and also abc.com If you require help, contact SupportPRO Server Admin
How to Install custom Apache or PHP modules via easy apache on Cpanel servers?
We can install additional modules not listed in the cPanel easyapache config options .To add custom module, we must know the version of Apache and PHP to which we need to add the module. Easy Apache allows us to specify any configure option supported by Apache and/or PHP. Place the option in the appropriate file; the files are as follows: Apache 1.3.x /var/cpanel/easy/apache/rawopts/Apache1 Apache 2.0.x /var/cpanel/easy/apache/rawopts/Apache2 Apache 2.2.x /var/cpanel/easy/apache/rawopts/Apache2_2 All PHP 4.x versions /var/cpanel/easy/apache/rawopts/all_php4 All PHP 5.x versions /var/cpanel/easy/apache/rawopts/all_php5 Mod_suPHP /var/cpanel/easy/apache/rawopts/all_suphp Specific PHP Version /var/cpanel/easy/apache/rawopts/PHP-X.X.X Adding entries to the appropriate …
You may need to change passwords of all the cpanel accounts sometimes because of the security concerns. Following script will allow you to change the passwords of all the accounts. 1. Create and open a file “changepass.sh” in your favorite editor and add following details to it. #! /bin/bash ls -1 /var/cpanel/users | while read user; do pass=`</dev/urandom tr -dc “A-Za-z0-9*-/+.*=_\|\\#” | head -c16 echo “$user $pass” >> new-pass.txt /scripts/realchpass $user $pass /scripts/ftpupdate done 2. Give executable permission to our script. chmod +x changepass.sh 3. Execute the script. sh changepass.sh …