Security
-
How to secure Nginx web server
Nam Huy Linux is using Nginx because Nginx is a great lightweight and high performace web server/reverse proxy server. Nginx is the second most popular webserver just after Apache web server, there are many popular sites using Nginx like Wikipedia, Sina, Weibo, Yahoo, Reddit, Tumblr, Worpress… Nginx can easily handle thousands inactive HTTP connections with very low memory consumption. In this…
-
How to secure Apache HTTP Web Server
Apache HTTP Server is an open source web server developed by a community of developers and users, supported by non-profit corporation Apache Software Foundation. Apache web server is often placed at the edge of the server to serve httpd traffic hence it’s the most vulnerable service to an attack. Even though Apache has a good history about security, it does…
-
How to install fail2ban on CentOS 6 and 7
I will show you how to install fail2ban on centos 6 and centos 7 to protect SSH brute force attacks. There are many ways to protect SSH server, the best way is to use ssh-keys authentication rather than regular password authentication. I have also written a long detailed article How to install, config and secure openssh server. In that article I have shown…
-
How to create and install self-signed SSL certificate on Nginx in CentOS 6
Google starts to love https from months back and recommends all websites to be encrypted with SSL over HTTP. Rumor said google gives higher rank to those websites have https than websites without ssl. If you have budget, go ahead and buy signed certificates comodo, geotrust, thawte, godaddy, symantec, etc… If you just want to have SSL for testing servers…
-
How to remove PHP X-Powered-By & Nginx Version
While I’m auditing my website’s security with curl command to view HTTP Response Header. I see that nginx gives out quite some server’s info which should be hidden for security reason. You can view your HTTP Response Header with curl command $ curl -I http://domain.com/ This is the output from one of my Nginx web server HTTP/1.1 200 OK Server:…
-
Virus and Malware vs Linux
Do you really need An Anti Virus and/or Anti Malware for Linux? In my opinion no you don’t need them if you know what are you doing and you deeply understand how Linux works. In the real world there are virus that targeted at Linux, you should heard that Mac OS (based on Unix) have been compromised by malware and…
-
Configure WordPress to use SMTP
Most hosting companies supports PHP mail() function since it’s one of the standard way to send mail. If your hosting provider set it up correctly, it’s very stable and secure,but some companies do not support PHP mail() for their security reasons. In that case there is another option for you to send mail from your website via SMTP (Simple Mail…
-
SSH login without password
We use SSH or Secure Shell to make connection between computers to execute commands. Username and password authentication is normally used to establish connection. With a good strong password, it’s secure enough to use SSH since everything is encrypted through SSH. In this article I’m going to show you how to SSH login without password by using private/public key-based authentication…
-
How to secure wordpress website
As you all know Nam Huy Linux Blog uses wordpress, and many popular websites like The New York Times, CNN, Forbes, boingboing, Ebay…. also uses wordpress. WordPress is an open source personal or professional blogging tool, Content Management System (CMS). WordPress requires PHP 5.2.4 or greater and MySQL 5.0 or newer on a hosting server to work. I’m not going…
-
How to install, config and secure openssh server
OpenSSH provides end-to-end encrypted replacement of applications such as telnet, rlogin, and ftp. Unlike these legacy applications, OpenSSH never passes anything (including username and password) over the wire in unencrypted form, and provides host authentication, to verify that you really are talking to the system that you think you are and that no one else can take over that session. Currently…