By XKCD If you ever run SQL queries to a remote database from your server, the number one thing you have to be careful about is making your queries impenetrable to SQL injection attacks. SQL injection attacks are very commonplace and can be very harmful. An attacker could manage to drop entire tables or modify key …
Read More
Let’s Encrypt is the new cool kid in town. What’s cooler than automated, free certificates that are as secure as commercial SSL certs, but come with none of the pain associated with having to validate and renew your certs? If you’ve just set up your new VPS server at VPSCheap, and want to find out how …
Read More
This tutorial is part of our ongoing series on CentOS 7 help and tutorials. CentOS is a minimalistic distribution by nature. It was designed that way and there are countless benefits to not including things that certain users will not need or find useful. When it comes to Python, CentOS does come with a base …
Read MoreAutoSSL was launched as a cPanel feature last year. It allows for the automatic generation of domain-validated SSL certs in any accounts in which it has been enabled. More recently, the feature is also integrated with Let’s Encrypt. We will write a post about the caveats of using Let’s Encrypt later down the road, but …
Read MoreThe German CERT (Computer Emergency Response Team) has published a warning about increased attacks and abuse attempts that use the Portmapper service in a server. This service is typically found on port 111 tcp/udp. In a standard CentOS 6 or 7 install, this port is used rpcbind. The CERT warns that they’re seeing an increased amount of DDoS reflection …
Read MoreWatchGuard, an internet security firm, has released a report from the last quarter of 2016 with some interesting facts: Roughly 30% of malware analyzed was classed ‘zero day’, which means that legacy antivirus databases are not able to repeal it. In other words, criminals have severely outpaced security firms. Whether it is your desktop computer …
Read More
Last week we discussed how CentOS reached EOL on March 31st. If you’re running cPanel and still haven’t moved to CentOS 6 or 7, you’re in luck (for now). cPanel has announced an extension of their security updates for cPanel 56, the last version that supports 32-bit systems, including CentOS 5. cPanel 56 will go …
Read More