Security

There is a program called Ping Tunnel to send TCP traffic over ICMP. From the project home page: Ptunnel is an application that allows you to reliably tunnel TCP connections to a remote host using ICMP echo request and reply packets, commonly known as ping requests and replies. At first glance, this might seem like […]

{ 1 comment }

For security reason you may need to find out current working directory of a process. You can obtained this information by visiting /proc/pid/cwd directory or using the pwdx command. The pwdx command reports the current working directory of a process or processes.

{ 3 comments }

By hiding out DNS server version number you can improve server security. fpdns is a program that remotely determines DNS server versions. It does this by sending a series of borderline DNS queries which are compared against a table of responses and server versions. (just like nmap command’s remote OS detection facility). A nameserver basically […]

{ 1 comment }

Shred utility overwrites a file to hide its contents, and optionally delete it if needed. The idea is pretty simple as it overwrites the specified FILE(s) repeatedly, in order to make it harder for even very expensive hardware probing to recover the data. By default file is overwritten 25 times. I’ve seen cases where law […]

{ 4 comments }

Adarsh asks: Can someone steal my PHP code or program without hacking my Linux box? Can someone snoop script over plain HTTP session? Short answer is no. PHP is server side thingy. However a misconfigured webserver can easily give out php file to all end users. You need to make sure that mod_php / mod_fastcgi […]

{ 13 comments }