Archive for the ‘security’ Category
Users registering for shared Linux webhosting accounts are normally not provided with shell access. Even if they do, what they can do with the shell is limited, as they are only in a jailed environment, thanks to CPanel’s jailshell. Displaying the SHELL variable at the command prompt verifies this;
$ echo $SHELL
/usr/local/cpanel/bin/jailshell
To briefly show what it [...]
Apache normally looks for the index files (usually index.html, index.htm, or home.html) when a request is made to a directory path. If Apache cannot find any of the index files, it will return a directory listing.
While this can be useful sometimes, for some other times it might not be desirable. Disabling it is just a [...]
Scalp! is a web log analyzer for the Apache web server that look for security problems. It reads the Apache log and perform log analysis for possible attacks against rulesets provided by PHP-IDS project. It is available for download from it’s Google code page.
Scalp! is currently written in Python though the writer claims he’s now [...]
A network switch doesn’t foward packets to everyone in the network the same way as a network hub do, and so theoretically a person in the network cannot look at other person’s traffic. There are ways however to get through this problem, which is by performing arp spoofing.
This guide will just discuss how it is [...]