starting search on google for security server linux like centos found  something to read and to apply. name is CSF “Config Server Firewall” may be everyone knows what’s. I just want to explain how to install it . ok not comment now

#cd /etc/

#wget http://www.configserver.com/free/csf.tgz

#tar zxvf csf.tgz

#cd /etc/csf

#./install.sh
Checking for perl modulesfailed
You need to install the LWP perl module (libwww-perl) and then install csf

you must be install libwww-perl. now me install libwww becouse I don’t now name it, I search on yum

#yum search libwww
Loaded plugins: fastestmirror
Loading mirror speeds from cached hostfile
* epel: ftp.jaist.ac.jp
* base: centos.cbn.net.id
* updates: centos.cbn.net.id
* addons: centos.cbn.net.id
* extras: centos.cbn.net.id
=============================== Matched: libwww ================================
perl-HTML-Tree.noarch : HTML tree handling modules for Perl
perl-libwww-perl.noarch : A Perl interface to the World-Wide Web
python-clientform.noarch : Python module for client-side HTML forms
python-mechanize.noarch : Stateful programmatic web browsing

found name’s perl-libwww-perl.noarch . install it

#yum install perl-libwww-perl.noarch

#./install.sh
Installation Completed

now I’m install on webmin

Install csf as above
Install the csf webmin module in:
Webmin > Webmin Configuration > Webmin Modules >
From local file > /etc/csf/csfwebmin.tgz > Install Module

Uninstallation
==============
Removing csf and lfd is even more simple:

On cPanel servers:

cd /etc/csf
sh uninstall.sh

On DirectAdmin servers:

cd /etc/csf
sh uninstall.directadmin.sh

On generic linux servers:

cd /etc/csf
sh uninstall.generic.sh

Good luck

source:CSF

I want to share and just sharing it is the wrong reply to please justified, if not added.

go and edit in

#vi /etc/php.ini

search and edit php.ini

• safe_mode = On
• expose_php = Off
• Enable_dl= Off
• magic_quotes = On
• register_globals = off
• display errors = off
• disable_functions = system, show_source, symlink, exec, dl,
  shell_exec, passthru, phpinfo, escapeshellarg,escapeshellcmd

what did configure’s true make to testing. script php like this’s

<? phpinfo(); ?>

good luck

source: linux hardening

We’r now about the metasploit framework for security penetration testing website or networking . I will explaint how to install metasploit on centos 5x . First Plan you must be install ruby and ruby-rdoc

#yum install ruby ruby-rdoc

select to directory on users

#cd /home/users/source

and get rubygems on

#wget http://rubyforge.org/frs/download.php/45905/rubygems-1.3.1.tgz

extract file

#tar zxvf rubygems-1.3.1.tgz

and now get file metasploit

#wget http://spool.metasploit.com/releases/framework-3.2.tar.gz

extract file framework

#tar zxvf framework-3.2.tar.gz

#cd framework

run file

./msfweb

note : for running on client orther you must be setting file

#vi msfweb

find script on host and change “127.0.0.1″ to “ip server metasploit”

cek on client ip server metasploit .

GoodLuck

source : chr00t

First time install modsecurity I find some trouble on my server, my browser answer Bad Request … “Your browser sent a request that this server could not understand.” what the trouble.

And I search on Google not answering for me, I Trush my brain to find trouble modsecurity.

so I cek on log server

tail -f /var/log/httpd/error_log

[Fri Oct 02 03:25:28 2009] [error] [client 172.16.x.x] ModSecurity: Access denied with code 400 (phase 2). Pattern match “^[\\d\\.]+$” at REQUEST_HEADERS:Host. [file "/etc/httpd/modsecurity.d/modsecurity_crs_21_protocol_anomalies.conf"] [line "60"] [id "960017"] [msg "Host header is a numeric IP address"] [severity "CRITICAL"] [tag "PROTOCOL_VIOLATION/IP_HOST"] [hostname "172.16.x.x"] [uri "/favicon.ico"] [unique_id "csjf638AAAEAAFz-OUUAAAAC"]. this’s trouble on modsecurity module and edit on

vim /etc/httpd/conf.d/mod_security.conf

Include modsecurity.d/modsecurity_crs_21_protocol_anomalies.conf give the ” #” restart you apache or httpd

services httpd restart

running on you’s browser.. tara … I cek on log [Fri Oct 02 03:45:14 2009] [error] [client 172.16.x.x] File does not exist: /var/www/html/favicon.ico, referer: http://172.16.10.36/ troubles same . Good lucky

Setelah mencari di embah Google akhirnya ketemu juga cara instalasi modsecurity di Centos 5 x86.
#untuk menambah ripository Centos

[root@b214oy apache2]# rpm -Uvh http://download.fedora.redhat.com/pub/epel/5/i386/epel-release-5-3.noarch.rpm

# ripositoy yang mengantur instalasi

Retrieving http://download.fedora.redhat.com/pub/epel/5/i386/epel-release-5-3.noarch.rpm
warning: /var/tmp/rpm-xfer.WCQKSM: Header V3 DSA signature: NOKEY, key ID 217521f6

#setelah itu “yum install modsecurity”

SecRuleEngine On

#Restart httpd

service httpd restart

#Cek log modsecurity

tail -f /var/log/httpd/error_log

mod_security configuration files

• /etc/httpd/conf.d/mod_security.conf – main configuration file for the mod_security Apache module.
• /etc/httpd/modsecurity.d/ – all other configuration files for the
  mod_security Apache.
• /etc/httpd/modsecurity.d/modsecurity_crs_10_config.conf – Configuration contained in this file should be customized for your specific requirements before deployment.
• /var/log/httpd/modsec_debug.log – Use debug
  messages for debugging mod_security rules and other problems.
• /var/log/httpd/modsec_audit.log – All requests that trigger a ModSecurity events (as detected) or a serer error are logged (“RelevantOnly”) are logged into this file.

sumber:fosiul and cyberciti

**Goodluck**

1. Rajinlah dan tekun berusaha, kemalasan berakibat petaka
2. Hematlah dalam pengeluaran, pemborosa menggerogoti modal
3. Ramahlah pada setiap Orang, ketidak sabaran mendatangkan kerugian
4. Janganlah menyia-nyiakan kesempatan, penundaan menghilangkan peluang
5. Lugaslah dalam transaksi, keraguan membawa pertikaian
6. Berhati-hatilah dalam memberi utang, kemurahan hati yang berlebihan adalah pemborosan modal
7. Periksalah semua catatan keuangan dalam cermat, kelalaian menghambat rezeki
8. Bedakanlah yang baik dari yang jahat, ketidak pedulaian melumpuhkan usaha
9. Kendalikanlah sediaan dengan sistematis, kecerobohan menciptakan kekacauan
10. Adilah dan tidak pilih kasih terhadap karyawan, prasangka menimbulkan kemalasan
11. Periksalah dengan cermat semua nota pengeluaran dan pemasukan, kealpaan berakibat mahal
12. Periksalah dagangan sebelum diterima, kesembronoan mendatangkan kemalangan
13. Kajilah dengan teliti setiap perjanjian, ingkar menghancurkan kepercayaan
14. Bijaksanalah dan jujur dalam usah, manajemen yang buruk membuka peluang bagi korupsi
15. Tunjukanlah rasa tanggung jawab, sikap tak bertanggung jawab mungundang kesulitan
16. Bersikaplah tenang dan penuh percaya diri, sikap nekat menghambat perkembangan

sekarang sudah tahu rahasia bisnis Orang TiongHok .. tidak pake lama *GPL*

dan yang ini setelah menuju link tersebuat disana bisa dilihat index.php or index.html sudah diganti menjadi deface.htm kemungkinan web tersebut sudah dah crack oleh seseorang

kemudian saya mencoba untuk login kedalam phpmyadmin dengan login “root”"tapedeh”, tara ternyata bisa sok itu phpmyadmin tinggal mau diapain terserah anda

Gret’z to

*echo & jasakom

**Pergunakan artikel ini dengan tanggung jawab sendiri penulis tidak bertanggung jawab apabila disalah gunakan