security

How To Install and Secure Redis on CentOS — step-by-step Linux tutorial on Progressive Robot

How To Install and Secure Redis on CentOS

This tutorial provides instructions for installing Redis on a CentOS 7 server and using its built-in security features, in coordination with some other security configurations, to keep it from being accessed by unauthorized users.

Read more
Iptablesファイアウォールルールを一覧表示および削除する方法 — step-by-step Security tutorial on Progressive Robot

Iptablesファイアウォールルールを一覧表示および削除する方法

Iptablesは、多くのLinuxシステムのネットワークセキュリティで重要な役割を果たすファイアウォール技術です。このチュートリアルでは、次のiptablesタスクの実行方法について説明します。ルールの一覧表示、パケットおよびバイトカウンタのクリア、ルールの削除、チェーンのフラッシュ(チェーン内のすべてのルールの削除)、iptablesファイアウォールの完全なリセット。

Read more
How To Protect an Nginx Server with Fail2Ban on Ubuntu 20.04 — step-by-step Linux tutorial on Progressive Robot

How To Protect an Nginx Server with Fail2Ban on Ubuntu 20.04

In this guide, you will learn how to install `fail2ban` on a Ubuntu 20.04 server and configure it to monitor your Nginx logs for intrusion attempts. Fail2ban can significantly mitigate brute force attacks by creating rules that automatically alter your firewall configuration to ban specific IPs after a certain number of unsuccessful login attempts. This will allow your server to harden itself against these access attempts without intervention from you.

Read more
How To Protect Your Linux Server Against the GHOST Vulnerability — step-by-step Linux tutorial on Progressive Robot

How To Protect Your Linux Server Against the GHOST Vulnerability

On January 27, 2015, a GNU C Library (glibc) vulnerability, referred to as the GHOST vulnerability, was announced to the general public. In summary, the vulnerability allows remote attackers to take complete control of a system by exploiting a buffer overflow bug in glibc. It is highly recommended that you update and reboot all of your affected Linux servers. We will show you how to test if your systems are vulnerable and, if they are, how to update glibc to fix the vulnerability.

Read more
How To Secure GitLab with Let's Encrypt on Ubuntu 16.04 — step-by-step Linux tutorial on Progressive Robot

How To Secure GitLab with Let’s Encrypt on Ubuntu 16.04

GitLab, specifically GitLab CE (Community Edition), is an open source application primarily used to host Git repositories, with additional development-related features like issue tracking. The GitLab project makes it relatively straight forward to set up a GitLab instance on…

Read more
How To Secure Nginx with Let's Encrypt on CentOS 7 — step-by-step Linux tutorial on Progressive Robot

How To Secure Nginx with Let’s Encrypt on CentOS 7

In this tutorial, we will show you how to use Let’s Encrypt to obtain a free SSL certificate and use it with Nginx on CentOS 7. We will also show you how to automatically renew your SSL certificate. If you’re running a different web server, simply follow your web server’s documentation to learn how to use the certificate with your setup.

Read more
How To Secure Node.js Applications with a Content Security Policy — step-by-step Javascript tutorial on Progressive Robot

How To Secure Node.js Applications with a Content Security Policy

A CSP is an HTTP header that provides an extra layer of security against code-injection attacks, such as cross-site scripting (XSS), clickjacking, and other similar exploits. It facilitates the creation of an “allowlist” of trusted content and blocks the execution of code from sources not present in the allowlist. In this tutorial, you’ll review the different protections the CSP header offers by implementing one in a Node.js application. You’ll also collect JSON reports of CSP violations.

Read more
Настройка брандмауэра с UFW в Debian 9 — step-by-step Linux tutorial on Progressive Robot

Настройка брандмауэра с UFW в Debian 9

UFW (Uncomplicated Firewall или «простой брандмауэр») представляет собой интерфейс iptables, предназначенный для упрощения процесса настройки брандмауэра. Хотя iptables — надежный и гибкий инструмент, начинающим бывает сложно научиться использовать его для правильной настройки…

Read more
CHAT