Atomicorp

If I understand you correctly, make sure you install the cloudflare module, from cloudflare, that will pass on the real IP address of the client. If you have that installed, ASL won't block the cloudflare proxies in that case, as it will only see the real IP passed on from CF. So you shouldnt have ...

Ideally this woudl be more restrictive, but I don't know any other way accomplishing this besides whitelisting all cloudflare IPs . I now get a [urlhttp://www.atomicorp.com/wiki/index.php/Vuln_ossec-hids_whitelist-critical]critical warning[/url] for doing so. While I understand the necessity for thi...

"service network restart" shows the following alerts. How do I make these alerts go away? NET[23441]: /etc/sysconfig/network-scripts/ifdown-post : updated /etc/resolv.conf lldpad[1395]: evb_ifdown:port eth0 remove failed lldpad[1395]: evb_ifdown:port eth0 remove failed lldpad[1395]: evb_if...

Should have been fixed in the repos yesterday. So > package-cleanup --orphans Loaded plugins: fastestmirror, presto Loading mirror speeds from cached hostfile * base: centos.fastsoft.net * epel: mirrors.solfo.com * extras: centos-distro.cavecreek.net * updates: centos-distro.cavecreek.net asl-pcre-...

Virtual Machines, like vmware, kvm, qemu, vserver, esx, etc. do allow you to install your own kernel, so you can secure the VM against kernel attacks at the virtual server level (even if the host server is not secured against these issues). So if you want to secure the kernel in these virtual machi...

In a kvm/qemu virtualization environment, if I have ASL on the host and on 1 VPS do I need two licenses?

Thanks

hello ever since installing ASL I've been getting bombarded with email alerts. I've restarted the server but they persist. There are three categories of alerts happening, and a more rare 4th type. You can see the three folders in the attached file that shows several examples of each of the three ale...

To make a long storry short: FileZilla seems to have implemented the ftp protocol correctly. It is psa-proftpd which responds differetly on the LIST and the MLSD commands. I would be interested to learn how this can be changed (if so) in the psa-proftpd configuration thanks gvhoofst. Your conclusio...

Highland wrote:Slightly out of the scope, but every client I've tried with scponly (WinSCP, Filezilla, etc) will show you usernames as well (and they're more secure since they're using SSH).

latest filezilla via SSL does not.

indeed, via ncftp i can see the names. now at least i know where to go (filezilla forum)

thank you michael. have a good weekend.

mikeshinn wrote:ncftp shows usernames and not just IDs.

so does the default version of proftpd shipped with plesk.

i tried with smartftp and coreftp. both reported permissions in the before format, so that is surely a client rendering issue. all good here. BUT smartftp, which does allow seeing owners/groups, only showed numbers, like in the after screenshot. i can understand the client translating flcdmpe into ...

i tried with smartftp and coreftp. both reported permissions in the before format, so that is surely a client rendering issue. all good here. BUT smartftp, which does allow seeing owners/groups, only showed numbers, like in the after screenshot. i can understand the client translating flcdmpe into r...

i followed the instructions at http://codersresource.com/linux/web-server/51-upgrade-proftpd-on-centos-to-fix-filezilla-bug at proftp works fine, including the TLS auth connection close issue with later versions of Filezilla. the only problem is that before (1.3.1), i used to see the permissions/own...