security

I'm building out a hosting environment for my customers. I typically use Linux but FreeBSD offers some features of interest to my customers. I've used FreeBSD before (version 9), but my experience is limited. The hosting architecture I'd like to setup is (focusing on two servers): Server 1...

With exploits like this that directly affect the hardware and timing of a CPU, can we really believe that security in computer science is anything but a dream? Sure you can raise the bar but if someone wants to get in, they can. Even if they are running in virtual machines on your server, they...

Hello Forum, I think I may have enabled too many security features that prevent me from adding any user account to groups wheel and others during the installation. I am not sure of how to get these back to not enabled post-installation. At least enabling the superuser account privilege for a...

Shadow Brokers reveals list of Servers Hacked by the NSA. FreeBSD is mentioned as one of the systems used in some of the hacked servers: This makes me curious about the security of FreeBSD and the methods and vulnerabilities NSA used to hack the servers. Do you think FreeBSD is suitable for...

Hey guys, I am working on my git server, and SSH its claiming about have no access to /dev/tty inside of jail. After read about this issue, I have found is need setup on /etc/rc.conf to start it using: devfs_load_rulesets="YES" And on my jail.conf I need use devfs_ruleset, the level 3 and 5...

I receive scheduled emails from periodic with the subject line "daily security run output". I cannot find documentation to help interpret each section of the email, e.g. "checking negative group permissions", "checking for uids of 0"(root and toor are listed). Most important to me however, is to...

I was Googling around for it but I couldn't find anything. Is there a module or tool in FreeBSD that provides the same security functionality as selinux?

I submitted this a while back, but never heard back: https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=204008 What concerns me about this is that cap_enter() doesn't kill the program if it's disabled. I don't think any compiler warnings are sent, nor anything at run time. It just silently...

Hello, I was testing one of my software on FreeBSD ,Where in the software i've been trying to replace the Real/Effective UID and GID of the process using below two functions setregid(),setreuid(). But these both functions return -1 as a result(when i got the errno to print it ssys "operations...

I have two FreeBSD 10.3 servers an audit shows the following pkg audit openssl-1.0.2_15,1 is vulnerable: OpenSSL -- multiple vulnerabilities CVE: CVE-2016-6308 CVE: CVE-2016-6307 CVE: CVE-2016-6306 CVE: CVE-2016-2181 CVE: CVE-2016-2179 CVE: CVE-2016-2178 CVE: CVE-2016-2177 CVE: CVE-2016-2180...

I'm a bit puzzled about this one. Maybe one of you can shed some light on this problem. I block certain extensions on my mailserver, for obvious security reasons. However, today I got an email with a docm-file attached to it. And of course it was spam and it contained ransomware. And obviously...

According to this article dated June 22 2016, http://www.infoworld.com/article/3087347/security/severe-flaws-in-widely-used-open-source-library-put-many-projects-at-risk.html. So is FreeBSD affected by this? I ask because the article says that the library originated on FreeBSD and was ported to...

I'm wondering if there's a secure attention key that aims to prevent a fake login from stealing account passwords in FreeBSD, similar to the Ctrl+Alt+Del sequence in Windows. Also, how much improvement can such a sequence actually bring in terms of security?

HERE: https://forums.grsecurity.net/viewtopic.php?f=7&t=4476 Let me paste it below, dunno how long it will hang on the net. The Truth about Linux 4.6 by spender » Sat May 14, 2016 1:06 pm As anticipated in public comments, the Linux Foundation is already beginning a campaign to rewrite...

First of all I'm sorry that this thread will appear to be off topic but I searched SECURITY category and is not present, so I wrote this here, in this category where, I think, are more services affected on a server. Well, in this morning I read the internal mail and found out that my server has...

Hi, A user systemd was created with root privileged on FreeBSD, once we started digging more into this we found the .bash_history file under his home directory which he created in /lib/.systemd, his history explained that he downloaded some log tamper script in order to hide his appearance but...

I am currently setting up a server that will host static websites, WordPress installations, forums and an eCommerce shop. I'll use Nginx, PHP and MySQL. Some of the hosted websites will be completely independent: One is a personal blog, one is a community forum, another is a website for a...

I have read a lot about gbde, geli and dm-crypt under linux, but a question remains: Why would iI store my master key on the disk? Seriously! Anybody could rip the metadata off the disk in no time and brute force the password in a cluster without even having additional encrypted sample data...

I'm asking this here since it's my understanding that the FreeBSD community knows some of the most about security. Me and a friend have been having a discussion if we should keep the code handling passwords and user account management (updating passwords, etc) on the server side vs letting...

I installed security/rkhunter with security/nmap support, and it kept showing TCP ports 1524, 6667, and 31337 as possible ports where a rootkit could have interacted. Running sockstat showed security/portsentry interacting with those ports on a freshly installed system. No known rootkits were...