1. jbodenmann

    Jails for a web server

    I am currently setting up a server that will host static websites, WordPress installations, forums and an eCommerce shop. I'll use Nginx, PHP and MySQL. Some of the hosted websites will be completely independent: One is a personal blog, one is a community forum, another is a website for a...
  2. sku1d

    Solved Question about disk encryption: Why the master key always gets stored on the encrypted disk?

    I have read a lot about gbde, geli and dm-crypt under linux, but a question remains: Why would iI store my master key on the disk? Seriously! Anybody could rip the metadata off the disk in no time and brute force the password in a cluster without even having additional encrypted sample data...
  3. zerophase

    I'm just a bit curious about website security.

    I'm asking this here since it's my understanding that the FreeBSD community knows some of the most about security. Me and a friend have been having a discussion if we should keep the code handling passwords and user account management (updating passwords, etc) on the server side vs letting...
  4. sidetone

    portsentry possibly causing false-positives in rkhunter

    I installed security/rkhunter with security/nmap support, and it kept showing TCP ports 1524, 6667, and 31337 as possible ports where a rootkit could have interacted. Running sockstat showed security/portsentry interacting with those ports on a freshly installed system. No known rootkits were...
  5. J

    Best way to automatically keep system, packages, and daemons up to date

    Hi, I'd like to know if you have a good way of keeping a system completely up to date in a completely automated way. If my understanding is correct, I can add 42 8 * * * freebsd-update cron in root's crontab to have the base system (I guess that means the kernel and the programs in /bin)...
  6. V

    Delayed nightly security emails after upgrade to FreeBSD 10

    Hello, I've got two servers which were recently upgraded from 9.2 to FreeBSD 10.1 (One was upgrade, second one was clean install due to hardware failure). Before upgrade, I was getting daily emails between 3 and 4am daily, but after upgrade, these emails started to arrive much later (8-9-10am)...
  7. V

    Adobe confirms major Flash vulnerability, and the only way to protect yourself is to uninstall Flash

    Adobe confirms major Flash vulnerability, and the only way to protect yourself is to uninstall Flash.
  8. C

    Starting in Web server hosting and administration

    Hello all, Not entirely sure where to put this thread. I've got a VPS at DigitalOcean with FreeBSD 10.2 on it that I use for my wife's business site and my own personal site. However, someone has asked me to develop a site for them and host it. I used to be a web designer, and I still code...