Category: Security

Nginx – IP based access control

nginx_logo

Introduction Nginx comes with a nifty module that allows us to allow or deny access to directories served by the webserver. The module is named ngx_http_access_module to allow or deny access to IP address. The syntax can look as follows:…

Java Security Settings

java_sun

Introduction With the latest Java updates the security settings has been set at a higher level by default and there are many websites that now experience problems with some older Java applets that no longer works. This is a common…

Debian – See all SSH login attempts

openssh

Guess I’m not the only one who have a lot of unauthorized login attempts via SSH on my Linux servers. With a simple command, you can watch failed or successful login attempts in /var/log/auth.log. #As root or via sudo, type…

Add Users to the Sudoers List

FinalPadlock

When connecting to your VPS, you should never login as root, in fact, root logins with password authentication should be disabled. Instead you should mainly use a none-root account and elevate your access rights to root only when needed. By…