I had to do some maintenance work on a Linux based server

I had to do some maintenance work on a Linux based server. It was mainlyjust archiving some files around and updating packages andconfigurations. However, as part of the maintenance I took theopportunity to put in some simple technical security controls in placeand documented some of them here for my reference. MySQL Database There was a MySQL server runningthat was only needed for the local host, but a “netstat -ltn” indicatedthat it was not bound to any specific IP, i.

Read More →

Installing OSSEC on Centos 5.7

OSSEC is an open source host-based IDS that performs log analysis, andis able to correlate and analyse logs for a number of Linux (andWindows, but that is outside the scope of this blog post) servers. Thesoftware architecture of OSSEC and the use of agents, lends OSSEC toflexible deployment and management [1]. Set-up the Atomic repository that already has the appropriate OSSECpackages and install them would be the easiest way.

Read More →