You are here

Security

Nagios: error: Could not stat() command file /var/lib/nagios3/rw/nagios.cmd

Submitted by Druss on Mon, 2012-07-09 19:39

I've been trying to .. empower .. the Nagios 3 web interface in Ubuntu/Debian to allow me to turn off service checking at will. I do this when I am checking logs etc. to debug some issue and all the spam from Nagios' polling is getting in the way. Nagios comes with an option to "disable active checks of this service" which when click should, well, disable active checks of the service. Clicking it, however, resulted in the following message:

Nagios is currently not checking for external commands.

Hiding Apache version information in Ubuntu

Submitted by Druss on Sat, 2012-06-02 00:03

If you've ever visited a webserver's error page, it will usually state the error followed by information about the server. This will customarily tend to include the webserver software, its version, possibly information about some of the modules compiled in as well as the server's address and port. While this might look generous and helpful, it also allows bad guys as well as other parties to probe the server to find out what it is running as well as other details such as version information. This information can be used for nefarious purposes.

SSH password-less login using PuTTY on Windows

Submitted by Druss on Thu, 2011-06-30 00:27

So, if you, like me, have to resort to PuTTY sometimes to SSH into a Linux box, I'm sure that you have also subjected yourself to much gnashing of teeth at the lack of a Windows solution to password-less logins into your server. For the uninitiated, password-less SSH allows you to log into a server without manually authenticating yourself.

Gmail's account suspension quirk

Submitted by Druss on Fri, 2010-04-16 22:32

Earlier today, I set up a gmail account for an elderly acquaintance of mine. Due to his really forgetful nature, once I created his account, I logged into it and mailed myself the username and password. As soon as I clicked "send" however, I found that I had been logged out of gmail. Trying to log back in proved futile as I was met with a "This account has been suspended" message!

Firefox and SSL pages with self-signed certificates

Submitted by Druss on Tue, 2009-04-07 10:16

If you're a firefox user (and usually, also a programmer), you've very likely come across situations where you are confronted with an error page while accessing an https address, because the certificate is self-signed. Getting around it involves adding an exception, which requires a multitude of steps ...

McColo aftermath = huge drop in my gmail spam

Submitted by Druss on Thu, 2008-11-13 13:03

My gmail account is also the catchall address for a couple of domains and usually clocks about 2000 - 3000 spam every day. In the aftermath of the McColo shutdown, this number is down to about 150 - 200.

Even if this is a temporary respite, it is still quite heartwarming.

SpamCop's statistical graphs are also a great indicator of spam frequency.

Installing and setting up Tor & Privoxy in Kubuntu & Firefox

Submitted by Druss on Mon, 2007-09-03 19:17

Tor is an open source project that allows users to utilise the Internet anonymously through the use of something along the lines of distributed proxies - the Onion router network. Privoxy is more of a local web proxy that, when configured correctly, can protect your privacy by filtering such information at the source. Together they are an effective and user-friendly (but not necessarily perfect) solution to preserving your anonymity on the Internet.

Pages

Subscribe to RSS - Security