Security researchers identified a new OpenSSL vulnerability, called DROWN( Decrypting RSA with Obsolete and Weakened Encryption ) on March 2016. This attack was focused on servers that use the more secure TLS protocol, which also supports the obsolete SSLv2.This vulnerability allows an attacker to decrypt the highly secured TLS encrypted communication if the server houses SSLv2 cipher support. DROWN was assigned the CVE-2016-0800 id by the us-nert on the march (https://www.us-cert.gov/ncas/bulletins/SB16-067 ). More than 11 million websites that use TLS were vulnerable to DROWN attack. If your website is protected …
The Zend OpCache provides faster PHP execution through opcode caching and optimization. It improves PHP performance by storing precompiled script bytecode in the shared memory. Installing Zend OPCache on PHP 5.3 or 5.4 1. Login to SSH on your server 2. Type the following commands: #cd /usr/local/src #wget http://pecl.php.net/get/ZendOpcache # to get the latest (master) build do the following instead:
Icinga is a fork of Nagios monitoring system. There are lots of changes and upgrades compared to Nagios, especially in version 2. The main visible difference is UI which is built on ext js. Other significant differences are in hosts and services definitions. Icinga2 designed to monitor large complex environments. Pre-requisites We need to make sure to install a LAMP stack and epel repository on the CentOS7 server for other dependency application which will support icinga2 . Icinga2 will collect the service information based on the monitoring plugins, so we …
Now-a-days Brute force attacks to servers/websites are frequent. Brute force attack is generally a password guessing technique. It is a type of attack in which trying every possible combination of characters or data in order to find the decrypted message. A brute force guarantees finding the key – it’s trying every possible combination and does not rely on any potentially incomplete dictionaries or lists of possible keys. cPHulk Brute force Protection is an inbuilt protection used in WHM for preventing brute force attack. cPHulk Brute force Protection will detect and …
Pyxsoft antimalware Plugin for cPanel/WHM protects your server from attacker scripts such as c99shell, r57shell, ANIShell, and hundreds more. It is a real-time Anti Malware for cPanel/WHM. Attackers can take control of your servers or can damage your customer’s data by uploading one of these scripts. Pyxsoft antimalware plugin works to protects your server in two ways: Protecting from the six server’s entrance SQL Injection Legitimate Access (SSH, cPanel etc) Web Forms FTP Brute Force Attacks Installed Trojans or shells (more…)
As we are aware, usually installing SSL Certificate requires Dedicated IP . The cost of this address is typically being passed down to the end user. Also the IPv4 address will be filled completely if every domain require a dedicated IP. So administrators decided to use multiple SSL installation on a single IP. Thus SNI (Server Name Identification) is established. >> What is SNI : —————— Server Name Indication (SNI) is an extension to the TLS protocol that indicates what hostname the client is attempting to connect. SNI is an …
The SSLv3 POODLE vulnerability, disclosed on October 14, 2014, is a protocol-level security flaw affecting the SSL 3.0 encryption standard. POODLE, which stands for Padding Oracle On Downgraded Legacy Encryption, exploits weaknesses in how SSLv3 handles padding during encryption. This vulnerability arises when plaintext is converted into ciphertext. To match cryptographic requirements, extra padding is added, and during decryption, this padding can leak sensitive information. Attackers can take advantage of this flaw through a man-in-the-middle (MITM) attack, gradually decrypting secure communications. How to Check if Your WHM/cPanel Server is Vulnerable …
The International Earth Rotation & Reference Systems Service (IERS) has mentioned that an extra second is to be added to Coordinated Universal Time (UTC) at 23:59:59 on 30 June 2015 and this is to make sure the alignment of astronomical and atomic time. Coordinated Universal Time, UTC is one of the basic time conventions used by most of the world’s local time zones. This UTC time convention has been derived from a bunch of atomic clocks that are distributed across several countries globally. The rotation of our earth is not …
The VENOM vulnerability, also known as the QEMU virtual machine exploit, is a critical security flaw discovered on May 13, 2015 by security researcher Jason Geffner during a security review of virtual machine hypervisors. VENOM stands for Virtualized Environment Neglected Operations Manipulation and affects virtualization environments that rely on the QEMU emulator. What Is the VENOM Vulnerability? VENOM (CVE-2015-3456) is a virtual machine escape vulnerability located in the Virtual Floppy Disk Controller (FDC) code used by QEMU. Many popular virtualization platforms depend on QEMU components, including: If successfully exploited, the …
Issue Description While trying to access an OpenVZ container using the following command: you may encounter this error: Here, 10524 refers to the container ID. Step 1: Check Node Memory Availability First, verify whether the host node is running out of memory: If the system shows sufficient free memory, the issue is likely not at the node level. Step 2: Check Resource Limits (privvmpages) If memory is not the issue, the problem is usually related to OpenVZ memory limits, especially privvmpages. Check current resource usage: This file contains resource usage …