Now that (hopefully?) the CentOS Stream debacle and the subsequent rise of Alma and Rocky Linux is behind us, there's news from RedHat that RHEL 9 has gone beta. Is this the love child that will finally heal the warring RPM tribes? No, but what you're looking at here is the future Alma and Rocky Linux, once this goes GA. Or the future RHEL if you prefer to run that under the free 16-system license. Looking at the releas...
Read More
There are a number of ways you can restrict access to your VPS. Passwords (specifically, good passwords) is the most basic method. Restricting access to ssh keys only is better. You can use Google Aut...
Read More
Periodically I've had auditors come to me and say "can you tell me what this user on this system did between such-and-such dates/times" and my answer is usually no. By default, Linux systems don't log...
Read More
Security gurus have suggested for years that relying on SMS for two-factor authentication is a bad idea. Reasons include Your phone may be stolen Many people allow SMS messages to be displayed on lo...
Read More
Are passwords a dying breed? In a blog post published September 15, Microsoft Vice President of Security, Compliance, and Identity Vasu Jakkal entitled "The passwordless future is here for your Micros...
Read More
Recently I was doing some discovery at work of some systems we inherited. I didn't yet have access but wanted to determine what type of OS was involved so I could coordinate with the proper teams. Yo...
Read More
T-Mobile announced on Wednesday that a "a bad actor had compromised T-Mobile systems": "Some of the data accessed did include customers’ first and last names, date of birth, SSN, and driver’s license/...
Read More
Security research firm Fortbridge has released a report claiming to have discovered "multiple vulnerabilities in cPanel/WHM". The report states: "Our team has found multiple vulnerabilities in cPanel/...
Read More
In this tutorial we'll show you how to configure your VPS so that every time someone logs in, you receive an email alerting you to this fact. This is kind of a "lowend intrusion detection system" thou...
Read More
Bruce force attacks are attempts to guess common passwords by repeatedly trying to login to your server. SSH is the most common target but FTP, IMAP, POP3, and other password-based systems can be tar...
Read More
Loss ratios in the cyber insurance world have skyrocketed in recent years - surging 400% year over year. They have hit 70% of paid premiums, which some industry commentators are saying is unsustainab...
Read More
Hey, you just browsed my site And this is a crazy Here's a cookie you didn't ask for So make me some money maybe! -- Cookie Monster, Share It Maybe (sort of) In the LowEnd hosting world, many provider...
Read More
Our interview series has featured a lot of industry leaders and we continue today by talking with Jordan Smith, founder and director of BillingServ. He's also known as @Jord on LowEndTalk where he is...
Read More
Since very early in its history, Unix systems have supported file and directory permissions. This security mechanism allow users to make their files private from other users, and for administrators to...
Read More
Stuart Elvish from STU Telecom reached out to us to tell us a little about a new IP reputation service they're rolling out. They submitted a nice writeup and invitation to LEB members to try out the...
Read More
Thanks to LowEndTalk administrator emeritus @jar for alerting the community to a range of exim vulnerabilities published by Qualys. There is a family of both local and remote vulnerabilities. tl;dr:...
Read More
DigitalOcean (DOCN) acknowledged today that it has informed some customers that DO had “confirmed an unauthorized exposure of details associated with the billing profile on your DigitalOcean account.”...
Read More
Our interview series has featured some of the true titans of the hosting industry. We're very excited to interview Martynas Bendorius, one of the owners of DirectAdmin. As one of the most popular an...
Read More
Lots of people want to automate their system setup, and this is frequently done by either using the provider's new VM hooks to run a script at setup time or later using something like Ansible. If you...
Read MoreSetting up your own OpenVPN VPN on both server and client is very easy to do. In this tutorial, we'll walk through setting up an OpenVPN server on a VPS you own, and then configuring Windows and macO...
Read More
SolusVM is a popular virtualization management solution used by many VPS providers. It's a familiar control panel for end users, who use it to setup their VPSes. Most providers offer templates, whic...
Read MoreNews broke today of a new security vulnerability in sudo, a widely used Linux/BSD/Unix utility that allows regular users to execute commands with elevated privileges. Typically, a user may need elevat...
Read More
This article was contributed by Dustin B. Cisneros of RackNerd - LowEndBox appreciates your contribution as always! Be sure to check out RackNerd’s latest LowEndBox specials if you are looking for a K...
Read More
If you are looking to setup some professional security cameras in your home and put the content in the cloud for remote storage/access, I would recommend looking at the wide range of solutions in the...
Read More
Server and application security are important factors to consider when running a website -- especially a website based on Wordpress. This easy to use guide will help take you through the steps of ensu...
Read More
The internet is the source of income for millions of people, and it could be considered one of the best creations of technology. However, with time, the internet has become vulnerable to security thre...
Read More
In previous tutorials in this series, we went over generating SSH keys and how to use them. We'll wrap up the series by showing you how to turn off password authentication on your server. Why Configu...
Read More
Apr 24, 2024
Apr 24, 2024
Apr 24, 2024
Apr 24, 2024
LowEndBox is dedicated to helping people run websites and services on low end dedicated servers and cheap virtual private servers, where you only need to pay a few dollars a month. Our mission is to help people find cheap vps hosting. [Learn more about LowEndBox]
host_c / Mar 25, 2024
meditatingsurgeon / Apr 24, 2024
HostEONS / Jan 17, 2024
1gservers / Jan 30, 2024
Comment Free For All: Hacking in the Movies
I once watched an episode of Law & Order with a friend who is an attorney. From the moment the action switched from the police to the prosecutors, he was tied up in knots, shouting at the screen a...
Read More