DOCSLIB.ORG

Virtual Hosting Howto with Virtualmin on Centos 5.1

Total Page:16

File Type:pdf, Size:1020Kb

Download full-text PDF Read full-text
Virtual Hosting Howto with Virtualmin on Centos 5.1 Virtual Hosting Howto With Virtualmin On CentOS 5.1 Version 1.0.1 Author: Andrew Colin Kissa <andrew [at] topdog [dot] za [dot] net> Last edited 14/04/2008 Introduction This tutorial shows how to set up a CentOS 5.x server to offer all services needed by virtual web hosters. These include web hosting, smtp server with (SMTP-AUTH and TLS, SPF, DKIM, Domainkeys), DNS, FTP, MySQL, POP3/IMAP, Firewall, Webalizer for stats. I will use the following software: Database Server: MySQL 5.0.22 Mail Server: Postfix 2.3.3 NS Server: BIND9 9.3.3 Web Server: Apache 2.2.3 /PHP 5.1.6 FTP Server: Vsftpd 2.0.5 POP3/IMAP server: Dovecot 1.0 Webalizer: for site statistics 2.01_10 Virtualmin: Control panel OS Installation Requirements To install the system you will need CentOS 5.1 Install media A good internet connection Install The Base System NOTE Some stages of the installation are not described here in interest of keeping the howto short, The grub configuration stages are left out for instance. Boot from the DVD or CD media and at the boot prompt type linux text. Skip the media test. Select your language: Select keyboard layout: Configure your network, I will be using dhcp if you do not have dhcp you can use static entries. Select Yes to initialize drive: Select custom layout for partitioning type: Create partitions: Configure networking: Set IP address and netmask: Set gateway and dns servers: Set the hostname: Set the timezone: Set the root password: Select server group and select customize software selection: Package groups select as follows: o DNS name server . bind-chroot Editors o vim-enhanced FTP server Mail server o dovecot o spamassassin o postfix Mysql Database o mysql-server Web server o mod_ssl o webalizer o php o php-pear o http-suexec o php-mysql Start the installation: File system is formatted: The installation will run: Reboot the system: Services To Disable To enhance security and free system resources on the system we need to disable any services that are not required. You can run this script to do this for you. acpid anacron apmd autofs bluetooth cups firstboot gpm haldaemon messagebus mdmonitor hidd ip6tables kudzu lvm2-monitor netfs nfslock pcscd portmap rpcgssd rpcidmapd sendmail smartd yum-updatesd Basics We need to fix a few issues to prepare the system for configuration. Install updates yum upgrade Switch the mta to postfix alternatives --config mta There are 2 programs which provide 'mta'. Selection Command ----------------------------------------------- 1 /usr/sbin/sendmail.postfix *+ 2 /usr/sbin/sendmail.sendmail Enter to keep the current selection[+], or type selection number: 1 Install caching-nameserver config: yum install caching-nameserver Install Build tools: yum install gcc cpp gcc-c++ automake automake14 automake15 automake16 automake17 openssl-devel subversion ncurses-devel -y Configure Network Alias cp /etc/sysconfig/network-scripts/ifcfg-eth0 /etc/sysconfig/network-scripts/ifcfg-eth0:1 Modify the file /etc/sysconfig/network-scripts/ifcfg-eth0:1 to look like this: DEVICE=eth0:1 BOOTPROTO=static BROADCAST=192.168.1.255 IPADDR=192.168.1.6 NETMASK=255.255.255.0 NETWORK=192.168.1.0 ONBOOT=yes Install Webmin / Virtualmin Import webmin pgp key: wget http://www.webmin.com/jcameron-key.asc rpm --import jcameron-key.asc Download the rpm: wget http://prdownloads.sourceforge.net/webadmin/webmin-1.390-1.noarch.rpm Verify the rpm (should say OK or else download again): rpm --checksig webmin-1.390-1.noarch.rpm Install the rpm: rpm -Uvh webmin-1.390-1.noarch.rpm Initial Webmin Config We need to secure webmin by editing /etc/webmin/miniserv.conf and make the following changes: Using SSL only: ssl=1 Change the port to 443 and bind to the second nic only: port=443 bind=192.168.1.6 Disable UDP broadcasts: #listen=10000 Change host lockout on login failures to 3 : blockhost_failures=3 Increase host lockout timeout to 120: blockhost_time=120 Change user lockout on login failures to 3: blockuser_failures=3 Change user lockout timeout to 120: blockuser_time=120 Change the realm to something else: realm=cpanel Log logins to utmp: utmp=1 Install the webmin Tiger theme: Login to webmin via https://192.168.1.5:10000 using root and your password. Go to webmin ? Configuration ? webmin themes. Select From ftp or http URL and enter http://www.stress-free.co.nz/files/theme-stressfree.tar.gz Click install theme. Click "return to list themes". Select StressFree as the Current theme then click change. Install php-pear module: Go to webmin webmin configuration webmin modules. Select Third party module from and enter http://www.webmin.com/download/modules/php- pear.wbm.gz. Click install module. Install virtualmin: Go to webmin webmin configuration webmin modules. Select install from ftp or http URL and enter http://download.webmin.com/download/virtualmin/virtual- server-3.51.gpl.wbm.gz Click install module. Remove unwanted modules Go to webmin webmin configuration delete and select the following: ADSL client Bacula backup system CD Burner CVS Server Cluster change passwords Cluster copy files Cluster cron jobs Cluster shell commands Cluster software packages Cluster usermin servers Cluster users and groups Cluster webmin servers Command shell Configuration engine Custom commands DHCP server Fetchmail mail retrieval File manager Frox ftp proxy HTTP Tunnel Heartbeat monitor IPsec VPN Jabber IM server LDAP server Logical volume management Majordomo list manager NFS exports NIS client and server OpenSLP server PPP dialin server PPP dialup client PPTP vpn server PPTP vpn client Postgresql database server Printer admin ProFTPD server QMAIL mail server SMART drive status SSH / Telnet login SSL tunnels SAMBA windows file sharing Scheduled commands Sendmail mail server Shoreline firewall Squid analysis report generator Squid proxy server Voicemail server WU-FTP server Idmapd server Restart webmin: service webmin restart Configure Rpmforge Repo rpm -Uhv http://packages.sw.be/rpmforge-release/rpmforge-release-0.3.6-1.el5.rf.i386.rpm NOTE: If you are using a different architecture check on https://rpmrepo.org/RPMforge/Using for the correct rpm Disable the repo (such that base packages not overwritten) edit /etc/yum.d/rpmforge.repo and set the following option: enabled = 0 Install Extra Required Packages Install clamav: yum --enablerepo=rpmforge install clamav clamav-db clamav-milter clamd -y wget http://www.topdog-software.com/files/clamav-milter.patch patch /etc/init.d/clamav-milter < clamav-milter.patch chkconfig --del clamd freshclam Install sanesecurity signatures: wget http://www.sanesecurity.co.uk/clamav/update_sanesecurity.txt -O /usr/local/bin/update_sanesecurity.sh chmod +x /usr/local/bin/update_sanesecurity.sh ln -s /usr/local/bin/update_sanesecurity.sh /etc/cron.hourly/ /usr/local/bin/update_sanesecurity.sh Install PHP eaccelerator: yum --enablerepo=rpmforge install php-eaccelerator Install newer spamassassin package from rpmforge: yum --enablerepo=rpmforge upgrade spamassassin Install spamass-milter: yum --enablerepo=rpmforge install spamass-milter Install perl modules required by spamassassin: perl -MCPAN -e 'install Mail::SPF' perl -MCPAN -e 'install Mail::SPF::Query' perl -MCPAN -e 'install Net::Ident' perl -MCPAN -e 'install IP::Country::Fast' perl -MCPAN -e 'install Mail::DomainKeys' perl -MCPAN -e 'install Mail::DKIM' Install fuzzyOCR: yum --enablerepo=rpmforge install netpbm-progs ocrad gocr gifsicle giflib-utils giflib -y svn co https://svn.own-hero.net/fuzzyocr/trunk/devel/ cd devel/ perl -MCPAN -e 'install String::Approx' perl -MCPAN -e 'install Time::HiRes' perl -MCPAN -e 'install Log::Agent' cp -rv {FuzzyOcr.cf,FuzzyOcr.scansets,FuzzyOcr.preps,FuzzyOcr.pm,FuzzyOcr.words,FuzzyOcr/} /etc/mail/spamassassin chcon -R system_u:object_r:etc_mail_t /etc/mail/spamassassin/{FuzzyOcr.cf,FuzzyOcr.scansets,FuzzyOcr.preps,FuzzyOcr.pm,FuzzyOcr.words,Fuzzy Ocr/} wget http://www.gbnetwork.co.uk/mailscanner/FuzzyOcr.words -O /etc/mail/spamassassin/FuzzyOcr.words Install Razor: yum --enablerepo=rpmforge install razor-agents -y Install roundcube: yum install php-imap rpm -Uvh http://www.topdog-software.com/oss/roundcube/roundcube-0.1-rc2.noarch.rpm Install imapproxy: wget http://imapproxy.org/downloads/up-imapproxy-1.2.6.tar.gz rpmbuild -tb up-imapproxy-1.2.6.tar.gz rpm -Uvh /usr/src/redhat/RPMS/i386/up-imapproxy-1.2.6-1.i386.rpm Activate services: chkconfig --level 345 httpd on chkconfig --level 345 postfix on chkconfig --level 345 spamassassin on chkconfig --level 345 spamass-milter on chkconfig --level 345 clamav-milter on chkconfig --level 345 mysqld on chkconfig --level 345 named on chkconfig --level 345 vsftpd on chkconfig --level 345 dovecot on chkconfig --level 345 imapproxy on Configuration Postfix Setup Introduction We will be setting up postfix with the following features: Virtual hosting UCE prevention Anti virus SMTP authentication TLS RBLs SPF Attack mitigation The adding of accounts and domains with be configured through virtualmin although it can be done manually as well. The setup is designed to be resource friendly so should be able to run on machines that are not over spec'ed so enabling the resources to be put to better use. To make it resource friendly we are not using external databases to store virtual user information like most other how-to's do as well as using milters for spam and virus checking as opposed to running amavisd-new. The Basics To begin with we will configure
Load more

Recommended publications
  • Sistem Pendukung Keputusan Dalam Pemilihan Control Panel Virtual Private Server Menggunakan Metode AHP Dan SAW
    Citec Journal, Vol. 5, No. 1, November 2017 – Januari 2018 ISSN: 2460-4259 14 Sistem Pendukung Keputusan Dalam Pemilihan Control Panel Virtual Private Server Menggunakan Metode AHP dan SAW Decision Support System in Selection of a Control Panel Virtual Private Server Using AHP and SAW Method Arwendra Adi Putra*1, Kusrini 2, Eko Pramono3 1,2,3Magister Teknik Informatika, Universitas Amikom Yogyakarta E-mail: [email protected], [email protected], [email protected] Abstrak Hosting dapat dibedakan menjadi berbagai macam type, salah satunya adalah Virtual Private Server (VPS). VPS merupakan sebuah cara untuk membagi sumber daya sebuah physical server menjadi server virtual. Sebuah VPS memerlukan control panel karena untuk mempermudah pengaturan seperti mengelola email, disk, database, penambahan domain, memonitor bandwidth dan backup data. Terdapat berbagai macam control panel dengan spesifikasi yang berbeda-beda. Pemilihan control panel tersebut sangat penting karena control panel tersebut harus disesuaikan dengan spesifikasi VPS. Berdasarkan permasalahan tersebut, diperlukan sistem yang dapat membantu dalam pengambilan keputusan dalam pemilihan control panel. Metode yang digunakan dalam penelitian ini adalah dengan menggunakan metode Analitical Hierarcy Process (AHP) dan Simple Additive Weighting (SAW). Metode AHP digunakan untuk mencari bobot variabel kriteria, sedangkan metode SAW digunakan untuk menentukan nilai akhir dan perangkingan. Hasil perangkingan alternatif control panel pada sistem ini menunjukkan hasil yang sama dengan hasil perangkingan dari pakar control panel, sehingga sistem ini dapat digunakan oleh pengguna sebagai dasar pengambilan keputusan dalam menentukan pemilihan alternatif control panel. Kata Kunci — control panel, VPS, AHP, SAW, sistem pendukung keputusan Abstract Hosting can be divided into various types, one of them is Virtual Private Server (VPS).
    [Show full text]
  • Escuela Politecnica Del Ejercito Website Sortijerito
    i DEPARTAMENTO DE CIENCIAS DE LA COMPUTACION CARRERA DE TECNOLOGIA EN COMPUTACION TESIS PREVIO A LA OBTENCIÓN DEL TÍTULO DE TECNOLOGO EN COMPUTACION AUTOR: CPTN. ROBERT GRANDA GARCIA TEMA: “ANALISIS, DISEÑO Y DESARROLLO DE UN SITIO WEB PARA LA EMPRESA CREACIONES SORTIJERITO” DIECTOR: ING. JOSE SANCHO CODIRECTOR: ING. WASHIGTON PEREZ SANGOLQUÍ, MARZO 2014 i CERTIFICADO En nuestra condición de Director y Co-Director CERTIFICAMOS que hemos revisado y evaluado el desarrollo de la Monografía Técnica ―ANALISIS, DISEÑO Y DESARROLLO DE UN SITIO WEB PARA LA EMPRESA CREACIONES SORTIJERITO‖ presentado por el señor GRANDA GARCIA ROBERT NAPOLEON en el cual se han observado las disposiciones de la Institución, metodología y técnicas que regulan esta actividad académica. Por ello autorizamos al mencionado alumno a reproducir el documento definitivo, presentarlo a las autoridades del Departamento de Ciencias de la Computación - Tecnología en Computación y proceder a la exposición del contenido. Sangolquí, marzo 2014. Ing. José Sancho Arias Ing. Washington Pérez Argudo DIRECTOR CO- DIRECTOR ii AUTORIA DE RESPONSABILIDAD En calidad de alumno de la Tecnología en Computación de la Universidad de las Fuerzas Armadas ESPE, CERTIFICO que la presente Monografía Técnica, previa a la obtención del título de TECNÓLOGO COMPUTACION, es un trabajo inédito el cual no puede ser copiado, ni reproducido parcial ni totalmente sin la autorización escrita del autor. Es todo cuanto puedo CERTIFICAR en honor a la verdad. Sangolquí, marzo 2014 _______________________ Robert Napoleón Granda García iii AUTORIZACION Autorizo a la Biblioteca Virtual de la Universidad de las Fuerzas Armadas ESPE, a realizar la publicación del presente trabajo. Robert Napoleón Granda García iv DEDICATORIA Dedico el presente trabajo a mis padres: Vicente y Teresita, a mis hermanos: Carlos, Maritza y Alejandro, a mis hijos: Caleb y Abraham, en especial a mi esposa Cynthia, quien me inspiró a dar lo mejor de mí y compartir conmigo las alegrías y experiencias de mi vida.
    [Show full text]
  • The Ultimate Guide to Web Hosting for Beginners. Don't Be
    Welcome to the Ultimate Guide to Web Hosting for Beginners. Don’t be fooled by the name – this is a top-notch exhaustive resource, for new website owners and veterans alike, created by hosting experts with years of experience. Our mission: to help you save money and avoid hosting scams. Your part: please be kind and share this guide with someone. We made it to help you choose the right hosting, make the most of it and save big bucks on the long run. Here’s what this guide covers: VPS, Cloud and Dedicated hosting: types, pricing and technologies How to choose the right OS SEO and web hosting Installing WordPress in 5 easy steps The common dirty tricks of web hosting companies (and how to avoid them) The Most important features in shared web hosting To make the most of the information we’ve gathered here for you, we recommend taking these articles one at a time. Be sure to keep a notepad and a pen with you, because there will be some stuff you may want to write down. And now, 1. We hope you enjoy reading this guide as much as we had enjoyed writing it 2. Keep safe out there, and open your eyes to avoid scams and dirty tricks 3. Feel free to ask us anything. We’re at http://facebook.com/HostTracer 4. Please consider sharing your hosting experience with us on our community, at http://hosttracer.com Good luck! Idan Cohen, Eliran Ouzan, Max Ostryzhko and Amos Weiskopf Table of Contents Chapter 1: Introduction, and a Hosting Glossary .................................................
    [Show full text]
  • How to Install Webmin/Virtualmin in Linux (Centos 7)
    Advanced Network/System Administration and Security Workshop ECE Building, Building, BUET, Dhaka Date: 10-12 December 2019 How to Install Webmin/Virtualmin in Linux (CentOS 7) What Is Virtualmin? Virtualmin is a Webmin module that is typically used to manage multiple virtual hosts through a single interface, similar to cPanel. It supports multiple functions such as creating/managing Apache virtual hosts, MySQL database creation/management, generating DNS zones, managing mailboxes, and much more. How Do I Install Virtualmin On CentOS 7? This guide implies that you’re using the root account on Cloud, VPS or Dedicated Server to perform the installation and that you have a basic working knowledge of a Linux shell. We highly suggest taking a backup of your server prior to proceeding with this script. Although this document is written for CentOS 7, Virtualmin offers an automated installation script for the following distros: • CentOS/RHEL/Scientific Linux 7 on x86_64 • CentOS/RHEL/Scientific Linux 5 and 6 on i386 or x86_64 • Debian 6, 7, and 8 on i386 or amd64 • Ubuntu 12.04 LTS, 14.04 LTS, and 16.04 LTS on i386 or amd64 (non-LTS releases are not supported) The following steps can be utilized to install Virtualmin in a CentOS 7 (RHEL 7) environment on a fresh OS installation. 1. Ensure your server is up to date sudo yum update -y 2. Download the Virtualmin installer script using wget sudo wget http://software.virtualmin.com/gpl/scripts/install.sh 3. Execute the install script Md. Ariful Islam Manager (Data & Transmission Network), BdREN E-mail: [email protected] Advanced Network/System Administration and Security Workshop ECE Building, Building, BUET, Dhaka Date: 10-12 December 2019 sudo sh install.sh As per the warning when the script is executed ensure that your OS is listed and type “y” then press “Enter” to continue with the installation If prompted you may need to enter in a fully qualified hostname.
    [Show full text]
  • Nasazení Systému Pro Správu Projektových Úložišť a Webových Serverů
    Mendelova univerzita v Brně Provozně ekonomická fakulta Nasazení systému pro správu projektových úložišť a webových serverů Bakalářská práce Vedoucí práce: Barbora Smejkalová Ing. Jiří Balej Brno 2017 Čestné prohlášení Prohlašuji, že jsem tuto práci: Nasazení systému pro správu projektových úložišť a webových serverů vypracovala samostatně a veškeré použité prameny a informace jsou uvedeny v se- znamu použité literatury. Souhlasím, aby moje práce byla zveřejněna v souladu s § 47b zákona č. 111/1998 Sb., o vysokých školách ve znění pozdějších předpisů, a v souladu s platnou Směrnicí o zveřejňování vysokoškolských závěrečných prací. Jsem si vědoma, že se na moji práci vztahuje zákon č. 121/2000 Sb., autorský zákon, a že Mendelova univerzita v Brně má právo na uzavření licenční smlouvy a užití této práce jako školního díla podle § 60 odst. 1 Autorského zákona. Dále se zavazuji, že před sepsáním licenční smlouvy o využití díla jinou osobou (subjektem) si vyžádám písemné stanovisko univerzity o tom, že předmětná licenč- ní smlouva není v rozporu s oprávněnými zájmy univerzity, a zavazuji se uhradit případný příspěvek na úhradu nákladů spojených se vznikem díla, a to až do jejich skutečné výše. Brno 19. května 2017 ................................................................ Poděkování Ráda bych touto cestou poděkovala Ing. Jiřímu Balejovi za vedení této baka- lářské práce. 4 Abstract Smejkalová, B. Choosing suitable control panel to manage servers and storage space of web projects. Bachelor thesis. Brno: Mendel University, 2017. This thesis deals with installation and testing selected control panels which will fulfil the requirements of Mendel University. Selected panel will contain test data and required functions are going to be configured to match the conditions.
    [Show full text]
  • Hosting Automation Hosting Automation
    Hosting Automation Hosting Automation Account provisioning if performed manually, can Automate service provisioning to be a tremendous time sink. HostBill gives you the provide a more efficient and Automated opportunity to deploy a hosting service by using rapid response to business pre-defined procedures that are carried out automatically without requiring staff intervention. requests and cut service provisioning As soon as your customers place their order, they activation or service change time can start using their service, and with our down. user-friendly client area, they can easily manage their services themselves. 02/26 Hosting Automation | Automated provisioning Import products from app servers Automatic service provisioning in HostBill is possible thanks to a seamless integration with various control panels and service providers. This seamless integration gives you another opportunity to automatically import products from the app server, as well as keep prices and portfolio in synchronization. This way you can ensure that access to service and data is up-to-date and consistent. 03/26 Hosting Automation | Automated provisioning Automatic service provisioning HostBill not only ensures the service is automatically deployed but also lets you define automated provisioning strategy that satisfies your organization requirements. In HostBill you control when the service should be created to keep the process streamlined and easy to manage. Choose when the product should be created: when the order is placed, when the first payment is received or when admin manually reviews and accepts pending order. Lorem ipsum 04/26 Hosting Automation | Automated provisioning Automatic account synchronization Depending on the module connected, after provisioning some accounts have the ability to synchronize HostBill account details with the app server.
    [Show full text]
  • Virtualmin Cpanel
    Virtualmin cPanel Web Hosting and Cloud Computing Control Panels Web Shooters Kolkata ,123/2A, Raja Rammohan Sarani, 1 st Floor, Kolkata – 700009, Phone 09748338473, Email [email protected] . Visit www.web-shooters.co.in Web Shooters Kolkata ,123/2A, Raja Rammohan Sarani, 1 st Floor, Kolkata – 700009, Phone 09748338473, Email [email protected] . Visit www.web-shooters.co.in Web Shooters Kolkata ,123/2A, Raja Rammohan Sarani, 1 st Floor, Kolkata – 700009, Phone 09748338473, Email [email protected] . Visit www.web-shooters.co.in Web Shooters Kolkata ,123/2A, Raja Rammohan Sarani, 1 st Floor, Kolkata – 700009, Phone 09748338473, Email [email protected] . Visit www.web-shooters.co.in Web Shooters Kolkata ,123/2A, Raja Rammohan Sarani, 1 st Floor, Kolkata – 700009, Phone 09748338473, Email [email protected] . Visit www.web-shooters.co.in Web Shooters Kolkata ,123/2A, Raja Rammohan Sarani, 1 st Floor, Kolkata – 700009, Phone 09748338473, Email [email protected] . Visit www.web-shooters.co.in Web Shooters Kolkata ,123/2A, Raja Rammohan Sarani, 1 st Floor, Kolkata – 700009, Phone 09748338473, Email [email protected] . Visit www.web-shooters.co.in Web Shooters Kolkata ,123/2A, Raja Rammohan Sarani, 1 st Floor, Kolkata – 700009, Phone 09748338473, Email [email protected] . Visit www.web-shooters.co.in Features You'll Love Virtualmin GPL and Virtualmin Professional w eb hosting control panels provide easy-to-use tools for managing websites, mailboxes, databases, web applications and web application development environments. Virtualmin also supports features rarely found in other control panels, like LDAP authentication , 2-factor authentication, command line management, and advanced access controls.
    [Show full text]
  • The Ultimate Business & Enterprise Hosting Solutions
    The Ultimate Business & Enterprise Hosting Solutions www.radonhosting.com Radon is for businesses that demand and operate our own Network Services high performance, versatile and Operations Center (NOC) that staffed scalable solutions. From hosting your 24x7 based in Karachi Pakistan. With Shared Hosting Website, Email, Voice, SMS and redundant connectivity to multiple Virtual Private Servers Business Applications, we offer all that service providers, power systems and Cloud Hosting your enterprise and business needs. generators generators we've achieved Dedicated Servers no less than 99.9% service uptime with Domain Registration For businesses in Pakistan and around our Tier-III data center. SSL Certificates the globe, our technology is built with Managed Outsourced Infrastructure reliable severs, network and solid Our customers include major Banks, Email Hosting and Backup MX infrastructure for piece of mind. All our Insurance companies, financial service SMS & Short-code Hosting products and services offer robust and institutions, Manufactures, Telecoms, Voice Hosting unmatched features to cater existing Pharmaceuticals, Service providers, Video Streaming and Hosting and growing needs for small and Textile and Engineering companies. Content Delivery Network medium enterprises to large Application Hosting corporations. With our own NOC, it gives us leverage Disaster Recovery Services to create and offer any service for your Unlike other hosting providers, we run enterprise. 2 www.radonhosting.com Shared Hosting Web Email Our unmatched service plans for Shared Enterprise Grade Storage, 99.9% SPAM Filtration Hosting Web and Email hosting offers HTTP Video Streaming, IMAP/POP3 Accounts reliability, scalability, security, and high Pre-installed Applications Mailing Lists availability for both your websites and PHP, Perl, Python ASP, Webmail Branding email services.
    [Show full text]
  • A Statistical Approach to Disentangle Joint Responsibility for Web Security in Shared Hosting
    Session C2: World Wide Web of Wickedness CCS’17, October 30-November 3, 2017, Dallas, TX, USA Herding Vulnerable Cats: A Statistical Approach to Disentangle Joint Responsibility for Web Security in Shared Hosting Samaneh Tajalizadehkhoob Tom Van Goethem Maciej Korczyński Delft University of Technology imec-DistriNet, KU Leuven Delft University of Technology Arman Noroozian Rainer Böhme Tyler Moore Delft University of Technology Innsbruck University The University of Tulsa Wouter Joosen Michel van Eeten imec-DistriNet, KU Leuven Delft University of Technology ABSTRACT KEYWORDS Hosting providers play a key role in fighting web compromise, Shared hosting; hosting providers; web security; patching, large- but their ability to prevent abuse is constrained by the security scale measurement; factor analysis; empirical evaluation practices of their own customers. Shared hosting, offers a unique perspective since customers operate under restricted privileges and providers retain more control over configurations. We present the 1 INTRODUCTION first empirical analysis of the distribution of web security features Global web infrastructure is compromised at scale in support of and software patching practices in shared hosting providers, the a myriad of cybercrime business models, from phishing to botnet influence of providers on these security practices, and their impact command and control (C&C) to malware distribution. The respon- on web compromise rates. We construct provider-level features on sibility for remediating compromised resources is shared between the global market for shared hosting – containing 1,259 providers – webmasters and multiple infrastructure operators, notably hosting by gathering indicators from 442,684 domains. Exploratory factor providers, domain name registrars and internet service providers analysis of 15 indicators identifies four main latent factors that (ISPs).
    [Show full text]
  • Webmin+Virtualmin La Soluzione Semplice Per La Gestione Completa Del Virtual Hosting
    Sistemisti Indipendenti.ORG http://www.sistemistiindipendenti.org e-mail: [email protected] Webmin+Virtualmin La soluzione semplice per la gestione completa del Virtual Hosting Introduzione Chi si è trovato a fornire soluzioni di hosting su piattaforma GNU/Linux, è a conoscenza del fatto di come spesso sia difficile, specie se il numero di utenti è alto, integrare i sistemi di creazione e gestione dei diversi servizi necessari, dallo spazio web, alla posta elettronica fino alla configurazione dei database SQL. Esistono ottimi prodotti che permettono di fare questo, ma spesso hanno costi davvero sostenuti e funzionalità non sempre trasparenti. Esiste comunque un‘alternativa a questi prodotti, completamente gratuita, si tratta di W ebmin (http//:www.webmin.com), la famosa e diffusissima interfaccia per la gestione via Web dei sistemi GNU/Linux, a cui va aggiunto il modulo Virtualmin. Ma facciamo un passo indietro, e vediamo di quali servizi parliamo: • http (Apache) • https (Apache mod-ssl) • dns (Bind9) • pop3/imap (Vpopmail/Courier IMAP) • smtp (Qmail) • database (MySQL v 4.0.x) • ftp (Proftpd) Prima di andare ad installare Webmin e poi il modulo Virtualmin e tutti gli altri moduli correlati, è dunque necessario avere una piattaforma con tutti i software indicati installati e normalmente configurati. Virtualmin successivamente permetterà il controllo integrato delle configurazioni e la gestione dei diversi virtualhost sia per quello che riguarda il web, la posta, i database e l‘ftp. Oltre ai programmi sopra indicati, è possibile utilizzare come database PostgreSQl e scegliere al Posto di Qmail+Vpopmail uno tra i seguenti server di posta: • Sendmail • Postfix • Qmail • Qmail+LDAP In realtà durante la fase di checking dello status dei programmi è in grado di effettuare il detect automatico dello status del sistema, semplificando di molto l‘installazione e guidando l‘utente alla risoluzione di eventuali problemi.
    [Show full text]
  • Sistem Pendukung Keputusan Dalam Pemilihan Control Panel Virtual Private Server Menggunakan Metode Ahp Dan Saw
    SISTEM PENDUKUNG KEPUTUSAN DALAM PEMILIHAN CONTROL PANEL VIRTUAL PRIVATE SERVER MENGGUNAKAN METODE AHP DAN SAW DECISION SUPPORT SYSTEM IN SELECTION OF A CONTROL PANEL VIRTUAL PRIVATE SERVER USING AHP AND SAW METHOD Arwendra Adi Putra*1, Kusrini2, Eko Pramono3 1,2,3 Magister Teknik Informatika, Universitas Amikom Yogyakarta E-mail: [email protected], [email protected] [email protected] Abstrak Hosting dapat dibedakan menjadi berbagai macam type, salah satunya adalah Virtual Private Server (VPS). VPS merupakan sebuah cara untuk membagi sumber daya sebuah physical server menjadi server virtual. Sebuah VPS memerlukan control panel karena untuk mempermudah pengaturan seperti mengelola email, disk, database, penambahan domain, memonitor bandwidth dan backup data. Terdapat berbagai macam control panel dengan spesifikasi yang berbeda-beda. Pemilihan control panel tersebut sangat penting karena control panel tersebut harus disesuaikan dengan spesifikasi VPS. Berdasarkan permasalahan tersebut, diperlukan sistem yang dapat membantu dalam pengambilan keputusan dalam pemilihan control panel. Metode yang digunakan dalam penelitian ini adalah dengan menggunakan metode Analitical Hierarcy Process (AHP) dan Simple Additive Weighting (SAW). Metode AHP digunakan untuk mencari bobot variabel kriteria, sedangkan metode SAW digunakan untuk menentukan nilai akhir dan perangkingan. Hasil perangkingan alternatif control panel pada sistem ini menunjukkan hasil yang sama dengan hasil perangkingan dari pakar control panel, sehingga sistem ini dapat digunakan oleh pengguna sebagai dasar pengambilan keputusan dalam menentukan pemilihan alternatif control panel. Kata Kunci— control panel, Virtual Private Server, Analitical Hierarcy Process, Simple Additive Weighting, sistem pendukung keputusan Abstract Hosting can be divided into various types, one of them is Virtual Private Server (VPS). VPS is a way to divide the resources of a physical server into a virtual server.
    [Show full text]
  • A Statistical Approach to Disentangle Joint Responsibility for Web Security in Shared Hosting
    Herding Vulnerable Cats: A Statistical Approach to Disentangle Joint Responsibility for Web Security in Shared Hosting Samaneh Tajalizadehkhoob Tom van Goethem Maciej Korczyński Delft University of Technology imec-DistriNet, KU Leuven Delft University of Technology Arman Noroozian Rainer Böhme Tyler Moore Delft University of Technology Innsbruck University The University of Tulsa Wouter Joosen Michel van Eeten imec-DistriNet, KU Leuven Delft University of Technology ABSTRACT command and control (C&C) to malware distribution. The respon- Hosting providers play a key role in fighting web compromise, sibility for remediating compromised resources is shared between but their ability to prevent abuse is constrained by the security webmasters and multiple infrastructure operators, notably hosting practices of their own customers. Shared hosting, offers a unique providers, domain name registrars and internet service providers perspective since customers operate under restricted privileges and (ISPs). The important role of hosting providers is codified in best providers retain more control over configurations. We present the practices from industry organizations such as M3AAWG and SANS first empirical analysis of the distribution of web security features [17, 25, 37]. These guidelines encourage providers to take sensible and software patching practices in shared hosting providers, the steps, such as keeping customer software updated. influence of providers on these security practices, and their impact When the defenses fall short and resources are compromised, on web compromise rates. We construct provider-level features on providers are regularly faulted for not doing enough to forestall the global market for shared hosting – containing 1,259 providers – compromise (e.g., [7, 42]). This raises the question, however, of by gathering indicators from 442,684 domains.
    [Show full text]