I will post later a few examples of network attacks. But, before that, I want to clarify what I call a network attack. I see many people making a confusion about the use of this term, even among professional or specialized journalists. Whenever there is a hack originated from the Internet, they call it a…
Continue Reading
As I just finished setting TLS and SASL to secure the access to my Postfix server, I realized that it was working only from inside my network. What I got from my lan : $ telnet mars 25 Trying 192.168.222.10… Connected to phocean.net. Escape character is ‘^]’. 220 phocean.net ESMTP Postfix (Debian/GNU) ehlo phocean.net 250-phocean.net…
Continue Reading
As I just finished setting TLS and SASL to secure the access to my Postfix server, I realized that it was working only from inside my network. What I got from my lan : $ telnet mars 25 Trying 192.168.222.10… Connected to phocean.net. Escape character is ‘^]’. 220 phocean.net ESMTP Postfix (Debian/GNU) ehlo phocean.net 250-phocean.net…
Continue Reading
This blog got hacked yesterday. It looks like some spammer managed to inject some PHP code into almost all *.php files of WordPress. It was not just like the classic SQL injection that is usually used to post some malicious post. The following code was added : <?php echo ‘<script type="text/javascript">function count(str){var res = "";for(i…
Continue Reading
I suddenly started to received some undelivered mail notifications while I was trying to send some messages to a mailbox hosted on my Postfix server. The cause described in the notification was : error writing message: File too large The first thing I did was checking my configuration file, main.cf. It seemed all right :…
Continue Reading
My OpenSSL-based daemons are back up ! These commands should provide quite a good security level for a while (at least again non super-power governmental organizations) : $ ssh-keygen -t rsa -b 4096 # openssl genrsa -aes256 -out secret.key 4096 I am the only person to use the server, so I don’t have any scallability…
Continue Reading
Due to the recent security hole discovered in Debian, which has also concerned various distributions – of course including Ubuntu – for 2 years, I simply closed all my SSH and OpenVPN accesses. I have had no time so far to check all the keys on my server. I prefer to stay on the safe…
Continue Reading