Linux
DVWA becomes its own Distro
by Webantix on Mar.26, 2010, under Hacking, Linux, Security
After a few months of hard work and a large number of emails between Ryan Dewhurst(@ethicalhack3r) and myself we have managed to create a LiveCD distribution of Damn Vulnerable Web App.
(continue reading…)
Hiding Apache and PHP version numbers
by Webantix on Mar.19, 2010, under Apache, Linux, Security
After running a number of tests on my own server I kept on seeing that by default Apache leaks a lot of information. Maybe not the most extreme threat, but still giving a little to much away for my liking.
The three main leaks are
- Apache version on errors
(Apache/2.2.8 (Ubuntu) PHP/5.2.4-2ubuntu5.10 Server at 10.0.0.1 Port 80)
- Apache advertising itself in the headers
(Server - Apache/2.2.3 (CentOS) DAV/2 PHP/5.2.12 OpenSSL/0.9.8e-fips-rhel5)
- PHP advertsining itself in the headers
(X-Powered-By - PHP/5.2.6-2ubuntu4.6)
Below is how to turn these settings off to keep your footprint to a minimum.
(continue reading…)
Symlink your Documents folder with your Dropbox folder
by Webantix on Feb.05, 2010, under Hacking, Linux
When I found out about Dropbox I instantly fell in love with the idea as I have a Dual Boot Laptop and my work PC all running differnet OS’s. The problem I found with Dropbox was that I had all my files already in place in my Documents folder on my Ubuntu setup. I did not want to move all my files to the Dropbox so I thought i would symlink them.
Installing DVWA (Damn Vulnerable Web Apps) on Ubuntu JeOS
by Webantix on Nov.18, 2009, under Hacking, Linux
-
Welcome to Webantix!
Home of Duncan Alderson, Security Gopher. Thanks for landing here! Feel free to comment on my posts good or bad we all need to learn more. You can also stay updated by subscribing to the RSS feed. See you later!
-
Follow Webantix
