This is an user contributed article.
Linux computer console is a physical device to operate a computer / server. Here are few steps which, if taken, make it more difficult for an attacker to quickly modify a system from its console. Sysadmin because even developers need heroes!!!
[click to continue…]
Postfix MTA updated to fix security vulnerabilities such as incorrectly checks the ownership of a mailbox. In some configurations, this allows for appending data to arbitrary files as root. This update has been rated as having moderate security impact.
All users of postfix should upgrade to these updated packages.
How do I patch Postfix under Debian / Ubuntu Linux?
First, update the internal database, enter:
# apt-get update
Install corrected Postfix package, enter:
# apt-get upgrade
How do I patch Postfix under RHEL / CentOS Linux?
Type the following command under RHEL / CentOS 5.x:
# yum update
Type the following command under RHEL <= 4.x:
# up2date -u
Now your FTP server is up and running. It is time to add additional users to FTP server so that they can login into account to upload / download files. To add a user called tom and set the password, enter:
# adduser -c 'FTP USER Tom' -m tom
# passwd tom
Now tom can login using our ftp server. Make sure the following is set in vsftpd.conf
Restart the vftpd:
# service vsftpd restart
However, I recommend setting virtual FTP user account to increase server security.