Audit daemon(auditd) is the userspace component that runs on linux systems which will keep track of audit records by writing all the events to /var/log/audit/audit.log It would consult the audit rules configured in /etc/audit/audit.rules for what needs to be monitored and tracked such as file access, command runs, systemcalls executions etc Since, there is huge amount of events that areRead more
The following is the excerpt from Qualys Scan report: Vulnerability: HTTP Security Header Not DetectedQID: 11827 Reported on Port : 80/tcpTHREAT:This QID reports the absence of the following HTTP headers: X-Frame-OptionsX-XSS-ProtectionX-Content-Type-Options IMPACT:Depending on the vulnerability being exploited, an unauthenticated remote attacker could conduct cross-site scripting, clickjacking or MIME-type sniffing attacks. SOLUTION:Depending on their server software, customers are advised to setRead more
In this section, we will be looking at couple of stuffs as below : Is SSL Session Caching configured for Apache HTTP Webserver Testing SSL Session Caching (SSL session resumption) Before we start over, lets have a basic understanding of what is SSL session caching and its significance. SSL Session Caching (Session Resumption): It is a performance optimization mechanism thatRead more
We will look at one more interesting SSH vulnerability reported by Qualys scanner appliance on RHEL6 servers. This one is classified as Confirmed Severity 2 (Medium) vulnerability level with PCI Vulnerable. Below is the vulnerability details from scan report Vulnerability: SSH Server Public Key Too SmallQID: 38738Category: General remote services PCI Vuln: YesTHREAT: The SSH protocol (Secure Shell) is aRead more
prtstat would print the statistics about the process including:
Process and its associated ID’s, State of the process and process thread count, Page Faults information of the process & child, CPU times of process and its child, Memory stats for process, Process Scheduling Policy and Priority.
Have you ever deleted a file in linux accidently and realized that it was a critical file and desperate to get the file back asap?You would then be after couple of questions that are knocking your mind hard. 1. Can I recover this file?2. If so, how do I recover that deleted file ? The answer is Yes, If anRead more