Tidying up your cron configuration

The last post about cron, run-parts and anacron came together because of all the security related stuff I’ve been up to the last couple of days, came with a few cron related scripts and I wanted to figure it out once and for all. As also said before, I’m of the cleaning type and discovered…

Continue Reading

Cron, run-parts and anacron

I think that everybody who touched Linux once knows about cron: the mechanism that lets you schedule tasks and takes care they are executed. Lesser known will be run-parts and anacron. I want to give little bit of information about these mechanisms. To begin with this post is also a good experience for myself because…

Continue Reading

Install OSSEC 2.9.2 IDS on CentOS 7.4

I’ve been doubting for days which IDS/IPS (Intrusion Detection System/Intrusion Prevention System) to use. Options were but not limited to Fail2Ban, Snort, Tripwire and Suricata. Eventually I’ve decided to install and test the OSSEC IDS software. Fail2Ban seems old and limited, Snort is by Cisco (which made me doubt the willingness to invest in the…

Continue Reading

Install Linux Malware Detect on CentOS 7.4

Following the installation of Rootkit Hunter, today we’re going to install Linux Malware Detect (LMD). LMD is going to use ClamAV which we installed here. This is all part of a couple of security related posts I’m having fun with. And not only having fun with, its absolutely necessary. To give you two very recent…

Continue Reading

Install ClamAV on CentOS 7.4

OK awesome. We’re having our first non-standard CentOS security mechanism in place. It’s running, sending me reports and stuff, and I’m testing all kinds of things with the rkhunter setup. As simple as it is, it’s pretty valuable. Today I want to install ClamAV. I’m going to install Linux Malware Detect (LMD) to help harden…

Continue Reading

Install Rootkit Hunter on CentOS 7.4

After a couple of nice, interesting and random posts we’re going to grit our teeth in a couple of important security related posts. First on the list is Rootkit Hunter, or rkhunter for short. So security. Where to begin..? On my CentOS 7 boxes there is the firewall and SELinux in enforcing mode. Configuring this…

Continue Reading

IPv6 on CentOS 6 and CentOS 7.4 VPS

For almost 20 years I’m working in IT and I hear “we’re running our of IPv4 addresses” and “IP version 6 is coming”. Although this is the truth, there are still not a lot of situations I come across that I need an IPv6 address. And then there was this situation where I very recently…

Continue Reading