Email is an extremely powerful and valuable tool for netizen, but only when used in the right way. As such we fully support measures that aim to defend users from unwanted emails. One way to do this is by participating in the Sender Policy Framework (SPF), which is an open standard method of allowing the […]
Continue reading…
Security
Prepare the RPM Building Environment
Some days ago, I posted some examples on the common usage of RPM. Now, this post describes a manual preparation of a RPM building environment. With the help of this environment, you can generate upated RPM packages and patch your RPM-based system from source code.
Continue reading…
Ubuntu 9.10 Desktop Edition Released
This new release comes with GIMP 2.6, GNOME 2.28/KDE 4.3.2, Mozilla Firefox 3.5, OpenOffice.org 3.1, Linux kernel 2.6.31, X.Org 7.5, and the Empathy Instant Messenger instead of Pidgin. The Ubuntu One client, which interfaces with Canonical’s new online storage system, is installed by default. It also debuts a new application called the Ubuntu Software Center […]
Continue reading…
Life Cycle of Redhat Enterprise Linux
The Red Hat Enterprise Linux Life Cycle is designed to reduce the level of change within each major release over time increasing predictability and decreasing maintenance costs. Every major version of Red Hat Enterprise Linux is maintained and supported independently during the life cycle.
Continue reading…
Clamav: Quick glance and exim integration
Clamav should be the best anti-virus software for linux, it’s widely used and frequently updated for security vulnerabilities. If your server allows some public groups to upload files or serves as mail server, it’s highly recommended to have a good antivirus installed, so that every of the unknown files would be scanned, in order to […]
Continue reading…
Something about Clickjacking
Let’s watch a youtube video first: Clickjacking As we see that, After playing a simple game, the player’s webcam got clickjacked. Here is another video from Google video, New Zero-Day Browser Exploits -ClickJacking, which will show you a detailed descrtion about ClickJacking.
Continue reading…
How to Implement P3P HTTP Headers for cross-site cookies
Why I need to make sure to implement P3P if using iframes or using cross-site cookies? The point is that if your application is inside iframe with parent belongs to another domain – cookies will not work for some very common configurations, for example IE 6/7 with privacy set to medium. If cookies don’t work […]
Continue reading…
File system based ACL in Linux
If you require more controls on file permissions, ACL (a.k.a Access Control Lists) might be a nice choice. ACL goes beyond normal user-group based permission control and allow setting permissions on per individual user or group basis.
Continue reading…
Bash shell fork() bomb
I just tried the famous shell fork() bomb on my Laptop, which is running Debian lenny. (I dare to do this because I’m going to shut down my laptop.) Please note that do NOT run it on your production server!
Continue reading…