Hardening FreeBSD

General Information

After a fresh install, it is important to harden the security on a server before it hits your network for use. Not only making configuration changes aid in the security of your box, but there are some practical rules to abide by. These are some hardening tips to make your FreeBSD box more secure and will apply to both the 5.x and 4.x branches, but I will assume you are running 5.x. If a 4.x change is different, I will note it.

[Read more...]

Chrooting Apache and PHP

General Information

Chrooting has been around for a long time now. Chrooting makes a program believe that the root of the file system is higher up in the hierarchy. For example, if I wanted to create a chroot in /chroot/httpd, a program executed from within the chroot would believe that “/chroot/httpd” was actually “/”. There in lies the beauty as the program can’t reach any files outside “/chroot/httpd”. Security of the server as a whole is increased due to the fact that the system binaries are off limits. In addition, chroots usually only have the bare minimum files inside, so exploits have a harder time breaking in.

[Read more...]

CGD Setup

General Information

CGD info:

This report describes how to setup an encrypted filesystem on NetBSD/i386. All partitions (except root) shall be encrypted on an existing installation.

[Read more...]

Secure Apache 1.3

General Information

Apache is the most popular web server in use today. But, not everybody that sets up their Apache server takes the necessary steps to secure it properly from intruders. This guide will show you some good security changes to make to your Apache installation.

[Read more...]

Setting up Snort and Snortreport

General Information

Any private network should be running some sort of Intrusion Detection System for system adminstrators to watch for any malicious traffic. In this guide you will learn how to set up snort and one of its reporting utilities, snortreport.

[Read more...]

Security Tips

General Information

Security is one of the most important things in administrating any sort of computer system. FreeBSD is certainly much more secure than Windows and other popular computer systems; however, most security problems lie within the user and other running software on the system than the OS itself. This guide will give a few hints and examples to make it a fair bit harder to violate your system.

[Read more...]