PUBLIC MARKS from camel with tags linux & install

GreenSQL (or greensql-fw) is a firewall for MySQL databases that filters SQL injection attacks. It works as a reverse proxy, i.e., it takes the SQL queries, checks them, passes them on to the MySQL database and delivers back the result from the MySQL database. It comes with a web interface (called greensql-console) so that you can manage GreenSQL through a web browser. This guide shows how you can install GreenSQL and its web interface on a Debian Etch server.

This article explains how you can install and configure apache2-mpm-peruser on a Debian Etch server. apache2-mpm-peruser is an MPM (Multi-Processing Module) for the Apache 2 web server, very similar to apache2-mpm-itk, but faster (almost as fast as apache2-mpm-prefork). mpm-peruser allows you to run each of your vhosts under a separate UID and GID - in short, the scripts and configuration files for one vhost no longer have to be readable for all the other vhosts. It is based on metuxmpm, a working implementation of the perchild MPM. The result is a sane and secure web server environment for your users, without kludges like PHP's safe_mode.

This article shows how to install and configure ModSecurity (version 2) for use with Apache2 on a Debian Etch system. ModSecurity is an Apache module that provides intrusion detection and prevention for web applications. It aims at shielding web applications from known and unknown attacks, such as SQL injection attacks, cross-site scripting, path traversal attacks, etc. I want to say first that this is not the only way of setting up such a system. There are many ways of achieving this goal but this is the way I take. I do not issue any guarantee that this will work for you!

This tutorial provides step-by-step instructions on how to install Xen on an Ubuntu Hardy Heron (Ubuntu 8.04) server system (i386). You can find all the software used here in the Ubuntu repositories, so no external files (apart from a fixed Ubuntu Xen kernel to enable networking for the virtual machines) or compilation are needed.

mod_defensible is an Apache 2.x module intended to block spammers/hackers/script kiddies using DNSBL servers. It will look at the client IP and check it in one or several DNSBL servers and return a 403 Forbidden page to the client. This guide shows how to install and use it with Apache 2 on a Debian Etch server.

Télécharger le paquet AIR depuis le site d'Adobe Air ou bien en copiant cette commande dans un terminal (ouvert dans votre /home de préférence) : wget http://download.macromedia.com/pub/labs ... 033108.bin Rendre le fichier exécutable, puis le lancer, avec les deux commandes suivantes (taper Entrée après chaque ligne) : chmod x adobeair_linux_a1_033108.bin sudo ./adobeair_linux_a1_033108.bin

djbdns is a very secure suite of DNS tools that consists out of multiple parts: dnscache, a DNS cache that can be used in /etc/resolv.conf instead of your ISP's name servers and that tries to sort out wrong (malicious) DNS answers; axfrdns, a service that runs on the master DNS server and to which the slaves connect for zone transfers; and tinydns, the actual DNS server, a very secure replacement for BIND.

In this tutorial I will describe how to install and configure mod_cband on an Apache2 web server. mod_cband is an Apache 2 module which provides bandwidth quota and throttling. It solves the problem of limiting users' and virtualhosts' bandwidth usage. The current version can set virtualhosts' and users' bandwidth quotas, maximal download speed, requests-per-second speed and the maximal number of simultanous IP connections.

You are not a Linux expert, Artica for Postfix allows you to install a full solution by one single command line: * Postfix: Main MTA * Kaspersky Anti-spam: powerfull Anti-spam provided by Kaspersky Inc * Kaspersky Anti-Virus * Bogofilter : Bayesian anti-spam * OpenLDAP: Database for main configuration and user management * emailrelay: little SMTP server (used as a content-filter) * SQLite library: zeroconf sql database engine with high perfomances. * Cyrus-imap: powerfull MDA System * Procmail: MDA Filter * Fetchmail: Email retreival * DnsMasq:DNS forwarder and DHCP server * Mailman:Mailing List manager * Sieve: End-user mail filters * Yorel script: Statistics of yorel * QueueGraph: Statistics for postfix * MailGraph: Statistics for postfix * AWSTats and geoip plugin: Statistics set for postfix * renattach: attachments filter

Lighttpd is a secure, fast, standards-compliant web server designed for speed-critical environments. This tutorial shows how you can install Lighttpd on a Debian Etch server with PHP5 support (through FastCGI) and MySQL support.

Lighttpd, sometimes pronounced "Lighty", is a lightweight HTTP server that can help alleviate Apache's load by serving static content. Since Lighttpd uses less resources per request than Apache, it generally serves most static content faster than Apache. This tutorial shows how to install Lighttpd behind Apache via Apache´s proxy module.

djbdns is a very secure suite of DNS tools that consists out of multiple parts: dnscache, a DNS cache that can be used in /etc/resolv.conf instead of your ISP's name servers and that tries to sort out wrong (malicious) DNS answers; axfrdns, a service that runs on the master DNS server and to which the slaves connect for zone transfers; and tinydns, the actual DNS server, a very secure replacement for BIND.

This short guide describes how to install Windows XP or Windows 2003 Server on Xen. It provides an overview of the Debian Linux Etch installation, and detailed steps for installing and configuring Xen and starting the Windows XP or Windows 2003 Server installation.

If you have a server with more than 4GB RAM and want to install a 32bit Debian Etch on it (following this tutorial: Debian Etch And Xen From The Debian Repository), you'd expect the Xen-PAE kernel to see all your RAM because the Xen-PAE kernel supports up to 64GB RAM. In fact, it recognizes only about 3.3GB RAM due to a bug in the GRUB bootloader. This article explains how you can fix GRUB so that all your RAM gets recognized. I do not issue any guarantee that this will work for you!

Pound is a reverse-proxy load balancing server. It accepts requests from HTTP / HTTPS clients and distributes them to one or more Web servers. The HTTPS requests are decrypted and passed to the back-ends as plain HTTP. It will act as: a) Server load balancer b) Reverse proxy server c) Apache reverse proxy etc d) It can detects when a backend server fails or recovers, and bases its load balancing decisions on this information: if a backend server fails, it will not receive requests until it recovers e) It can decrypts https requests to http ones f) Rejects incorrect requests h) It can be used in a chroot environment (security feature)

This guide shows how to install and configure Smokeping on Debian Etch to monitor network latency. From the Smokeping web site: "SmokePing is a deluxe latency measurement tool. It can measure, store and display latency, latency distribution and packet loss. SmokePing uses RRDtool to maintain a longterm data-store and to draw pretty graphs, giving up to the minute information on the state of each network connection."

In this article I describe how to install and setup the Cacti in a ISPConfig Server. There aren't many differences from installing in other ISP Managers or standalone Apache installations. I tried many others solutions, but Cacti is very simple and fast to implement.

Secure PHP installation - Lorenzo Alberton

This tutorial shows how to install and configure the Zenoss network monitoring tool on a Ubuntu 6.06 system. Zenoss is a free open-source tool that allows you to monitor servers, applications, networks, power, etc. regarding their configuration, availability, performance, and so on. It can also alert you by email if it finds inappropriate actions.

This document describes how to install a mail server based on Postfix that is based on virtual users and domains, i.e. users and domains that are in a MySQL database. I'll also demonstrate the installation and configuration of Courier (Courier-POP3, Courier-IMAP), so that Courier can authenticate against the same MySQL database Postfix uses.