Login

NecrosIhsan · 08-23-2006, 09:59 AM

Hopefully everything will be fixed tomorrow. Right now, the server's pretty secure but Fantastico is still broken...I've sent a ticket to ev1 to have it fixed. Once that's fixed, I'll have a security expert look the system over one last time for vulnerabilities. Because of our new business, we cannot afford to have any security holes on our server, so I'm willing to put forth the cash to make sure the sucker's as airtight as possible.

NecrosIhsan · 08-26-2006, 04:22 PM

Tracked down the problem and destroyed it. One of our clients was using a horribly insecure canned script that was exploited seven ways till Sunday. Still updating the server, as I have little time lately. Anyways...

2.6.9-22.EL

This is the version number of the kernel we're using, it came precompiled with the server. However, does anyone know what the ".EL" means? I'd like to update the kernel to the latest version and have grsecurity compiled in but I'm not sure if I can just build the generic 2.16.17.11 kernel.

DrV · 08-26-2006, 11:29 PM

I'm guessing you're using Red Hat Enterprise Linux, hence the EL. You should certainly be able to build your own kernel, but maybe do a bit of looking first to see if you can find the current kernel config file so you don't have to reinvent the wheel when you configure the new one.

NecrosIhsan · 08-27-2006, 06:49 AM

I figured the EL stood for Enterprise Linux but I didn't know for sure and google was no help, as usual. I'm not exactly sure where the config file is, as I didn't build the original one but I'll poke around and see what I can find. Thanks. Big Grin

Btw anarky...the server is quite secure at this point...only the most well-funded of hackers will be able to get in at all, and right now I'm not hosting anything on that particular server to make it worth anyone's while to hack into.

anarky · 08-27-2006, 10:18 AM

Thanks. I'll get online again this weekend. (Monday Tuesday for me.)

DrV · 08-27-2006, 11:49 AM

If you can't find the original config, it's no biggie - just make sure you select at least your hardware when configuring the new kernel. It usually doesn't hurt to select things you don't have, so be liberal. Smile

BTW, the "EL" part of the version string is just a user-specifiable string when the kernel is configured - it is only used for humans to differentiate between configurations.

NecrosIhsan · 08-28-2006, 11:17 AM

I found the kernel config and will compile the new kernel when I get the chance.

On the subject of lameasses, I got two messages from the server, indicating two brute force login attempts. One attack was from somewhere in China, attempting to gain access as "tester" (invalid user), the other was from somewhere in Korea, attempting to gain root access (impossible to accomplish now). Both were attempting ssh2 access. Both failed. Both were banned from the server.

anarky · 08-28-2006, 03:08 PM

Great! Give me a week or so to recover from the busiest night shift week I've ever done and I'll see if I can't get a half decent site back up.

I have been thinking of expanding the Stuff section. What do you think?

NecrosIhsan · 08-28-2006, 03:49 PM

Another brute force attempt and another ban, this time from Hong Kong. These guys don't know when to quit, I guess. :rotfl:

I don't remember the original "Stuff"...anyone else?

anarky · 08-28-2006, 04:37 PM

It was more or less a place where I put some cool stuff to download. I never really advertised it. Don't stress. I'm just playing with an idea of expanding server space...

Login
Username:
Password:	Lost Password?
	Remember me