Let’s Encrypt is a free, automated, and open certificate authority (CA),
run for the public’s benefit. One of the features of Let’s Encrypt is
ninety-day lifetimes for certificates. There are many tutorials how to
automate the procedure of updating certificates. All of them have their pros and cons. For example you must manually create
folders and files or stop web-server for several minutes... I think I found
one of the simpliest ways. The main idea is to let Let's Encrypt to...
latest OpenSSL is an open source project that provides a robust,
commercial-grade, and full-featured toolkit for the Transport Layer
Security (TLS) and Secure Sockets Layer (SSL) protocols. It is also a
general-purpose cryptography library. The latest OpenSSL 1.0.2h was released on 03-rd of May 2016. If you are
worried about your server security you should update the OpenSSl package to
the latest version. Unfortunately all of the CentOS releases includes the
out-of-date version of OpenSSL. For example:...
What is critical program error 106?
If any problem occurred during installation, the software can get damaged.
If that happens then when you try to run the program you will see a message
“Critical Error 106”. Why did it happen? It happened for several reasons like, Incomplete installation. If there are any leftovers of that software still in your PC. If you already have that software installed in another directory. If you have the previous version of that software still in your PC. If your installation happened in the wrong directory. If it's required to install the software in the “...
This article will show you how to setup CentOS WebPanel on your Virtual Private Server -VPS. There are multiple alternatives available but I will focus on an easy approach and let you inspect the other options on your own. This article doe not show you what to do after you deployed the WebPanel. It will only point you to the next steps.
Servers do not exist in isolation, and those servers with only the most
basic SSH configuration can be vulnerable to brute force attacks. fail2ban
provides a way to automatically protect the server from malicious signs.
The program works by scanning through log files and reacting to offending
actions such as repeated failed login attempts. Install Repository
Because fail2ban is not available from CentOS, we should start by
downloading the EPEL repository: First, you need to enable EPEL repository on your system. rpm -Uvh
http://dl.fedoraproject.org/pub/epel/7/x86_64/e/epel-release-7-1.noarch.rpm Update Once you...
Introduction to Linux Security Linux Security. Most people rarely secure a freshly installed server right
off the bat, but in the world we live in this is an absolute must. So if
it’s so important to, why do so many people wait and do it last, if at
all? I’m as guilty as the next person. It often comes down to just
wanting to to start developing and doing the fun stuff. Hopefully this
tutorial will show that it is far better secure your server first, and...
Denial of service (DoS) attacks launch via SYN floods can be very
problematic for servers that are not properly configured to handle them.
Proper firewall filtering policies are certainly usually the first line of
defense, however the Linux kernel can also be hardened against these types
of attacks. This type of hardening is useful for SYN floods that attempt to overload a
particular service with requests (such as http) as opposed to one that
intends to saturate the server's network connection,...