DaemonForums  

Go Back   DaemonForums > FreeBSD > FreeBSD Security

FreeBSD Security Securing FreeBSD.

Reply
 
Thread Tools Display Modes
  #1   (View Single Post)  
Old 21st August 2012
barti barti is offline
Shell Scout
 
Join Date: Jul 2012
Posts: 122
Thanked 0 Times in 0 Posts
Default freebsd jails and drupal protection

Hello again,


If I want to protect drupal cms on top of freebsd base system, the best way is to use a jail?


Are there any other means of protections?


Thanks.
Reply With Quote
  #2   (View Single Post)  
Old 21st August 2012
J65nko J65nko is offline
Administrator
 
Join Date: May 2008
Location: Budel - the Netherlands
Posts: 3,116
Thanked 182 Times in 149 Posts
Default

Another means of protection is "mod_security" , a web application firewall.

From http://www.modsecurity.org/projects/modsecurity/ :

Quote:
ModSecurity: Overview

With over 70% of all attacks now carried out over the web application level, organisations need every help they can get in making their systems secure. Web application firewalls are deployed to establish an external security layer that increases security, detects, and prevents attacks before they reach web applications.

HTTP Traffic Logging

Web servers are typically well-equipped to log traffic in a form useful for marketing analyses, but fall short when it comes to logging of traffic to web applications. In particular, most are not capable of logging the request bodies. Your adversaries know this, and that is why most attacks are now carried out via POST requests, rendering your systems blind.

ModSecurity makes full HTTP transaction logging possible, allowing complete requests and responses to be logged. Its logging facilities also allow fine-grained decisions to be made about exactly what is logged and when, ensure only the relevant data is recorded.

Real-Time Monitoring and Attack Detection

In addition to providing logging facilities, ModSecurity can monitor the HTTP traffic in real time in order to detect attacks. In this case ModSecurity operates as a web intrusion detection tool, allowing you to react to suspicious events that take place at your web systems.
__________________
You don't need to be a genius to debug a pf.conf firewall ruleset, you just need the guts to run tcpdump
Reply With Quote
  #3   (View Single Post)  
Old 5th September 2012
barti barti is offline
Shell Scout
 
Join Date: Jul 2012
Posts: 122
Thanked 0 Times in 0 Posts
Default naxsi for nginx

http://code.google.com/p/naxsi/


https://www.owasp.org/index.php/OWASP_NAXSI_Project
Reply With Quote
  #4   (View Single Post)  
Old 5th September 2012
ocicat ocicat is offline
Administrator
 
Join Date: Apr 2008
Posts: 2,834
Thanked 190 Times in 160 Posts
Default

As request, barti, it would be courteous to others to at least provide a short description of why you post links to this site. Some would consider blindly going to an unknown site to be both insecure & a ruse.

While I can understand brevity, the fact that you don't provide any explanation whatsoever makes me believe if it wasn't important enough to you to provide even a minimal description, I shouldn't bother finding out what is on the other side of the link.
Reply With Quote
  #5   (View Single Post)  
Old 5th September 2012
barti barti is offline
Shell Scout
 
Join Date: Jul 2012
Posts: 122
Thanked 0 Times in 0 Posts
Default sorry about that

naxsi is the nginx equivalent to mod_security in apache.

I'm doing investigation.


Can't find a tutorial , how to install the thing

I'm new to this and I was sure that you already know naxsi.
Reply With Quote
  #6   (View Single Post)  
Old 6th September 2012
J65nko J65nko is offline
Administrator
 
Join Date: May 2008
Location: Budel - the Netherlands
Posts: 3,116
Thanked 182 Times in 149 Posts
Default

According to http://www.modsecurity.org/projects/...inx/index.html there is a mod_security version for Nginx
__________________
You don't need to be a genius to debug a pf.conf firewall ruleset, you just need the guts to run tcpdump
Reply With Quote
  #7   (View Single Post)  
Old 6th September 2012
barti barti is offline
Shell Scout
 
Join Date: Jul 2012
Posts: 122
Thanked 0 Times in 0 Posts
Default which is better to use?

naxsi or mod_security?

Thanks.
Reply With Quote
  #8   (View Single Post)  
Old 6th September 2012
barti barti is offline
Shell Scout
 
Join Date: Jul 2012
Posts: 122
Thanked 0 Times in 0 Posts
Default

http://howtounix.info/howto/naxsi-nginx-firewall

nice wowto
Reply With Quote
Reply

Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump

Similar Threads
Thread Thread Starter Forum Replies Last Post
Drupal 7 released J65nko News 0 6th January 2011 08:32 PM
Backing up FreeBSD jails siffland FreeBSD General 1 20th March 2010 08:46 AM
FreeBSD jails and ezjail DNAeon FreeBSD Security 1 25th January 2010 08:53 AM
OpenBSD chroot vs. FreeBSD jails gpatrick OpenBSD Security 4 25th November 2009 03:21 AM
Updating FreeBSD Jails after rebuilding world on host anomie Guides 0 10th September 2008 03:23 AM


All times are GMT. The time now is 03:40 AM.


Powered by vBulletin® Version 3.8.4
Copyright ©2000 - 2014, Jelsoft Enterprises Ltd.
Content copyright © 2007-2010, the authors
Daemon image copyright ©1988, Marshall Kirk McKusick