Checking if a server is under ddos attack
Monday, June 4th, 2007A quick and usefull command for checking if a server is under ddos is:
netstat -anp |grep ‘tcp\|udp’ | awk ‘{print $5}’ | cut -d: -f1 | sort | uniq -c | sort -n
Email Header Injection in PHP
Monday, June 4th, 2007It has become apparent that spammers are getting even smarter than we take them for. Rather than abuse open relays, which are almost non-existent, these scum-of-the-earth ‘traders’ are now abusing contact forms.
SSH vs Script Kiddies How-to Guide
Thursday, May 31st, 2007Scope
Some idiot created a SSH worm that uses a dictionary attack to try to log into a computer over port 22. The worm tries to set up shop on your computer and tries to find the next vulnerable computer. This clogs up networks with bazillions of SSH login attempts.
Unix: Disable Direct Root Logins
Tuesday, May 29th, 2007Allowing the root user to login directly is a major security issue, we’ll show you how to disable it so you can still login as root but just not directly, reducing the security issue.
One-way Web Hacking
Thursday, May 3rd, 2007Please follow this link here to know how easy it is for a webserver to be compromised…
Its a fantastic article, but in the end you will learn that its almost impossible to keep your server secure.