How nftables log to external file Logging traffic blocked by the nftables or iptables firewall rules is necessary for debugging the firewall rules and to be alerted to local software problems. Any packet matching a rule can be logged by using -j LOG target for iptables or log statement for nftables. Logging packet has no effect on the packet's disposition, however. The packet must match an accept or drop rule. Linux Security Networking
How to Configure Proxy in Debian/CentOS/RHEL/Fedora Proxies are commonly found on business networks, but they are increasingly becoming popular for personal use. The following tutorial will show you multiple ways of setting your proxy in Linux desktop or servers Linux Networking
SSH - Too Many Authentication Failures How to recover from "Too many Authentication Failures for user root" I've done several attempts to establish SSH-connecton for user root@host using putty terminal. While doing so I specified wrong credentials several times and after that I've specified them correctly, and then after the credentials were accepted the ssh session breaks with "Server unexpectedly closed network connection". This error is reported by putty terminal. When trying to ssh root@localhost from the local console - it works fine. Linux Networking
Postfix - how log email headers like From, To and Subject This is a little trick for Postfix, it lets you log the subject, from and to of all the emails postfix sends (or which pass through it if you run it as a relay). It comes in handy when you need to debug an email issue and need to confirm your mailserver has sent the message. Networking
Working with Vsftpd as FTPS server with virtual users and SSL certificates in Debian or Ubuntu Introdution What is the difference between FTP , FTPS and SFTP we learned in the last article Understanding Key Differences Between FTP, FTPS and SFTP We also need to recognize the difference between active and passive ftp connections Configure VSFTPd server Install vsftpd server and pam service First you need vsftp and PAM with htpasswd utility support installed ~] apt-get install vsftpd libpam-pwdfile apache2-utils Configure pam for vsftpd Linux Pluggable Authentication Modules (PAM) provide dynamic authentication support for applications and services in a Linux or GNU/kFreeBSD system. Debian Linux Networking Security
Understanding Key Differences Between FTP, FTPS and SFTP Understanding Key Differences Between FTP, FTPS and SFTP Perhaps the most common protocols used in file transfer today are FTP, FTPS and SFTP. While the acronyms for these protocols are similar, there are some key differences among them, in particular how data are exchanged, the level of security provided and firewall considerations. Learning these key differences can help you when choosing a file transfer protocol or troubleshooting common connection issues. Networking Security
Most secure SSL/TLS configuration for Apache, Nginx, Postfix, Dovecot, HAProxy and other What is a cipher suite? Cipher suites decide how secure, compatible and fast your HTTPS website is. A cipher suite is a set of information that helps determine how your web server will communicate secure data over HTTPS. A web server uses certain protocols and algorithms to determine how it will secure your web traffic. These are the ingredients of a secure connection. A cipher suite is essentially a list of those ingredients. Security Linux Networking Web Servers
Rewrite uri to lowercase in nginx and apache webserver We want make our uri case insensitive. What it is? When I call uri like https://mybluelinux.com/INdex.html, so such uri will be first rewrite to all lowercase chars like https://mybluelinux.com/index.html. Debian Linux Networking Web Servers
How list all available Apache webserver variables Is it possible to output any or all available apache variables ? Yes, we can use a perl or php script and cgi and php apache module: Perl create test domain config for apache virtual host e.g. var.mybluelinux.com.conf and enable it in apache configuration in DocumentRoot for your apache virtual host config file create directory cgi create in directory cgi file e.g. echo.pl copy to echo.pl file this perl code: Networking Web Servers
apache mod_rewrite module guide - part 2 RewriteBase Directive Description: Sets the base URL for per-directory rewrites Syntax: RewriteBase URL-path Default: None Context: directory, .htaccess Override: FileInfo Status: Extension Module: mod_rewrite RewriteBase is used to fix cases where mod_rewrite is running in a per-directory context (Directory or .htaccess ) There it will act locally, i.e., the local directory prefix is stripped at this stage of processing and your rewriting rules act only on the remainder. At the end it is automatically added back to the path. Networking Web Servers
apache mod_rewrite module guide - part 1 mod_rewrite is an Apache module that allows for server-side manipulation of requested URLs. Incoming URLs are checked against a series of rules. The rules contain a regular expression to detect a particular pattern. If the pattern is found in the URL, and the proper conditions are met, the pattern is replaced with a provided substitution string or action. This process continues until there are no more rules left or the process is explicitly told to stop. Linux Networking Web Servers
Apache server - Terms Used to Describe Directives Apache server - Terms Used to Describe Directives Have you sometime a question what is url, url-path, file-path, regex, mime-type and more? The answer is in this article. We describe a basic terms used to describe apache webserver directives. Directives use a great number of different argument types. A few common ones are defined below. URL A complete Uniform Resource Locator including a scheme, hostname, and optional pathname as in http://www. Networking Web Servers
