Search found 74 matches
- Wed Sep 05, 2012 10:31 am
- Forum: Atomic Protector (formerly ASL)
- Topic: Whitelisting CloudFlare
- Replies: 15
- Views: 18584
Re: Whitelisting CloudFlare
If I understand you correctly, make sure you install the cloudflare module, from cloudflare, that will pass on the real IP address of the client. If you have that installed, ASL won't block the cloudflare proxies in that case, as it will only see the real IP passed on from CF. So you shouldnt have ...
- Wed Sep 05, 2012 9:52 am
- Forum: Atomic Protector (formerly ASL)
- Topic: Whitelisting CloudFlare
- Replies: 15
- Views: 18584
Whitelisting CloudFlare
Ideally this woudl be more restrictive, but I don't know any other way accomplishing this besides whitelisting all cloudflare IPs . I now get a [urlhttp://www.atomicorp.com/wiki/index.php/Vuln_ossec-hids_whitelist-critical]critical warning[/url] for doing so. While I understand the necessity for thi...
- Wed Aug 01, 2012 10:22 am
- Forum: General Help and Development Discussion
- Topic: Errors when bringing down eth0
- Replies: 0
- Views: 3935
Errors when bringing down eth0
"service network restart" shows the following alerts. How do I make these alerts go away? NET[23441]: /etc/sysconfig/network-scripts/ifdown-post : updated /etc/resolv.conf lldpad[1395]: evb_ifdown:port eth0 remove failed lldpad[1395]: evb_ifdown:port eth0 remove failed lldpad[1395]: evb_if...
- Mon Jul 02, 2012 11:45 pm
- Forum: General Help and Development Discussion
- Topic: mod_security in Atomic requires asl-pcre
- Replies: 3
- Views: 5470
Re: mod_security in Atomic requires asl-pcre
Should have been fixed in the repos yesterday. So > package-cleanup --orphans Loaded plugins: fastestmirror, presto Loading mirror speeds from cached hostfile * base: centos.fastsoft.net * epel: mirrors.solfo.com * extras: centos-distro.cavecreek.net * updates: centos-distro.cavecreek.net asl-pcre-...
- Sun Jun 03, 2012 2:16 am
- Forum: General Help and Development Discussion
- Topic: Virtualization and pricing
- Replies: 3
- Views: 5112
Re: Virtualization and pricing
Virtual Machines, like vmware, kvm, qemu, vserver, esx, etc. do allow you to install your own kernel, so you can secure the VM against kernel attacks at the virtual server level (even if the host server is not secured against these issues). So if you want to secure the kernel in these virtual machi...
- Sat Jun 02, 2012 9:45 am
- Forum: General Help and Development Discussion
- Topic: Virtualization and pricing
- Replies: 3
- Views: 5112
Virtualization and pricing
In a kvm/qemu virtualization environment, if I have ASL on the host and on 1 VPS do I need two licenses?
Thanks
Thanks
- Thu Dec 02, 2010 5:02 pm
- Forum: General Help and Development Discussion
- Topic: Help - Getting Flooded with Email Alerts
- Replies: 1
- Views: 2693
Help - Getting Flooded with Email Alerts
hello ever since installing ASL I've been getting bombarded with email alerts. I've restarted the server but they persist. There are three categories of alerts happening, and a more rare 4th type. You can see the three folders in the attached file that shows several examples of each of the three ale...
- Mon Jun 07, 2010 7:08 pm
- Forum: Atomic Repository Announcements
- Topic: psa-proftpd 1.3.2-1
- Replies: 25
- Views: 27487
Re: psa-proftpd 1.3.2-1
To make a long storry short: FileZilla seems to have implemented the ftp protocol correctly. It is psa-proftpd which responds differetly on the LIST and the MLSD commands. I would be interested to learn how this can be changed (if so) in the psa-proftpd configuration thanks gvhoofst. Your conclusio...
- Wed May 05, 2010 12:56 pm
- Forum: Atomic Repository Announcements
- Topic: psa-proftpd 1.3.2-1
- Replies: 25
- Views: 27487
Re: psa-proftpd 1.3.2-1
latest filezilla via SSL does not.Highland wrote:Slightly out of the scope, but every client I've tried with scponly (WinSCP, Filezilla, etc) will show you usernames as well (and they're more secure since they're using SSH).
- Fri Apr 30, 2010 4:08 pm
- Forum: Atomic Repository Announcements
- Topic: psa-proftpd 1.3.2-1
- Replies: 25
- Views: 27487
Re: psa-proftpd 1.3.2-1
indeed, via ncftp i can see the names. now at least i know where to go (filezilla forum)
thank you michael. have a good weekend.
thank you michael. have a good weekend.
- Fri Apr 30, 2010 3:42 pm
- Forum: Atomic Repository Announcements
- Topic: psa-proftpd 1.3.2-1
- Replies: 25
- Views: 27487
Re: psa-proftpd 1.3.2-1
so does the default version of proftpd shipped with plesk.mikeshinn wrote:ncftp shows usernames and not just IDs.
- Thu Apr 29, 2010 9:39 pm
- Forum: Atomic Repository Announcements
- Topic: psa-proftpd 1.3.2-1
- Replies: 25
- Views: 27487
Re: psa-proftpd 1.3.2-1
i tried with smartftp and coreftp. both reported permissions in the before format, so that is surely a client rendering issue. all good here. BUT smartftp, which does allow seeing owners/groups, only showed numbers, like in the after screenshot. i can understand the client translating flcdmpe into ...
- Tue Jun 09, 2009 7:54 pm
- Forum: Atomic Repository Announcements
- Topic: psa-proftpd 1.3.2-1
- Replies: 25
- Views: 27487
Re: psa-proftpd 1.3.2-1
i tried with smartftp and coreftp. both reported permissions in the before format, so that is surely a client rendering issue. all good here. BUT smartftp, which does allow seeing owners/groups, only showed numbers, like in the after screenshot. i can understand the client translating flcdmpe into r...
- Tue Jun 09, 2009 1:26 pm
- Forum: Atomic Repository Announcements
- Topic: psa-proftpd 1.3.2-1
- Replies: 25
- Views: 27487
Re: psa-proftpd 1.3.2-1
i followed the instructions at http://codersresource.com/linux/web-server/51-upgrade-proftpd-on-centos-to-fix-filezilla-bug at proftp works fine, including the TLS auth connection close issue with later versions of Filezilla. the only problem is that before (1.3.1), i used to see the permissions/own...