Configuring simple sftp access for your server

So if you are using my odroid image you can basically skip Step 1 and goto Step 2. Step 1 is about configuring sshd daemon to allow sftp access and this is done on my odroid image availiable here. Step 2 is about adding new users that have sftp access on your server. This is not for existing users. The configuration for that is seperate. Look at the references section towards the end for hints on that.

Testing your server's firewall with Nessus

In my last article Setting up your firewall with Shorewall on Linux (Debian), I showed you how you could setup a firewall on your server. After setting up the firewall, I had no idea if it was setup correctly. I needed someway to test it. After a bit of searching I found Nessus. Although they had a commercial version but for home use Nessus was free, but ýou have to only register.

Setting up your firewall with Shorewall on Linux (Debian)

My server is behind a NAT router so a firewall running on it is kind of redundant. But I didn't want to take any chances. The server should have a firewall of its own. So even on a LAN environment if other connected PCs are compromised than your server needn't suffer because of that. And if you directly connect than hopefully this guide will help you. (Although I will try to get verification from the shorewall people if what I did is ok, since I could not find a single example of such a configuration )

Configuring x11vnc securely on your server for remote access

So, you more than often need remote access to your web server. In my case my server is not even connected to anything but a network. So a VNC solution for me is a must. And new linux users are left scratching their heads when they come to linux from the windows world. But it doesn't need to be so complicated. Below is a cook-book recipe if you choose to follow it.

Setting up the Core Rule Sets for Apache mod_security

After just about a year of hosting, I can tell you, this is one module that you should not host any website without. But configuring the module itself is not enough, without the OWASP ModSecurity Core Rule Set (CRS), the module is pretty much useless.

Again, I'm using Debian, so both these modules are availiable from the debian repositories. You can install them as below:

Setting up Webmin and Virtualmin for web hosting (on odroid or any ARM platform) using Debian

If your hosting your own website than the combination of webmin and virtualmin is a boon. Even for development purposes its great. The virtualmin install script for a freshly installed "supported" platform runs flawlessy. But for every other system you have to do the drill manually.

Intrusion detection Setup with AIDE (Advanced Intrusion Detection Environment)

So after my server was compromised by the shell shock vulnerability, I had no way of knowing what was compromised. What follows next is way to find what has changed on your system/server when you are compromised.

My Drupal Blog Web Server Optimization - Part 3

So it was time to do something about the sluggish feel of my blog without resorting to memcache modules and so on yet. Looking at the state of availiable options, following are the modules I decided to go for.

JavaScript callback handler

Adding Recent Visitor Locations Map to Drupal

So the next thing my blog needed was map showing the location of my visitors. There should be a module for that in drupal and sure enough I found a few of them. The only module that seems directly related to what I wanted was "Visitor Info" but that required registration at a provider. So the search continued. Next I found ip_geoloc, support for it looked great. It looked like it spoke with a lot of other modules. And most importantly the 4th thumbnail was exactly what I wanted.

My Web Server/Drupal installation backup strategy with backupninja

So in this article I'll show you an example of backup that I employ for my server. I have been using a manual approach for a long time (which I'll hint at towards the end) but now I have switched in favor of an automated option. You will see that on my odroid u2 server, I have attached a usb stick. This is where my backups are created.


Subscribe to Ahsan's Corner RSS