Closed. This question is off-topic. It is not currently accepting answers.
Want to improve this question? Update the question so it's on-topic for Stack Overflow.
Closed 9 years ago.
Improve this question
I have caught a hacker after looking through my site's FTP logs - it looks as if they have gleaned a list of passwords for several of my sites and are now connecting on a daily basis to upload spammy PHP files that perform header redirects to their sites. They always connect from the same IP address.
Blocking that IP and changing the FTP passwords is a given, but it seems so mundane and submissive. Is there anything I can do to this guy as he connects or once he's already in the system?
Some recommendations:
Change your FTP port. Most script kiddies use a port scanner to scan a list of IP addresses for TCP services. They mostly look for port 21.
Disable root login for SSH.
You mentioned this before, but make sure your password is secure and not written down on a post-it note on you computer monitor.
Related
Closed. This question is off-topic. It is not currently accepting answers.
Want to improve this question? Update the question so it's on-topic for Stack Overflow.
Closed 9 years ago.
Improve this question
I am hosting and application in IIS. the application is a INTRANET APPLICATION.
Already the server has 2 application hosted in it with host names
site1.k.com and site2.k.com
k.com is my domain name.
I have give host name for my site as
site3.k.com
Do i have to make DNS entry for this.
If you have a wildcard dns entry such that <anything>.k.com goes to your server, then you don't need a specific DNS entry for site3.k.com, but it might make things easier down the road if you have it.
Of course, if you don't have the wildcard set up, and you need to have the url for site3.k.com work, then yeah, it'd be required.
Now, you mention that this is intranet ... if you have a windows server configured to broadcast that it's name is site3 via WINS service, then you might get away with not having the DNS entry, but this behavior is not reliable, because WINS may or may not route to remote sites, depending on WAN and/or VPN configurations, and will generally be a pain in the ass for support.
Closed. This question is off-topic. It is not currently accepting answers.
Want to improve this question? Update the question so it's on-topic for Stack Overflow.
Closed 10 years ago.
Improve this question
Okay I understand that this might be a silly question.
I'm looking forward to unblock Youtube in my country. I'm quite sure its a simple address/url block. I currently have to use proxies which reduce the speed of the connection. I tried to use the IP of Youtube to open it up but Youtube's IP actually opens up Google.com so that it is of no use.
I was also thinking of something like creating a DNS entry on one of my sub-domains that might point to Youtube's URL in some way but that might not be possible as I don't really know how DNS systems work at all. So some guesses might help. I'm not sure of some other hidden URLs that point to Youtube or even if some exist. So they might help as well.
May be using VPN connection to some provider that does not block the traffic would help? This one for example: http://privateinternetaccess.com
Closed. This question is off-topic. It is not currently accepting answers.
Want to improve this question? Update the question so it's on-topic for Stack Overflow.
Closed 11 years ago.
Improve this question
I have recently started using iptables, and I executed iptables -F without knowledge of what it might do. And suddenly I have lost connection to the node. I can't even ping the node. Any help would be highly appreciated!
Thanks!
You will need physical access to the computer and either restart the firewall script or simply reboot the server (but that's the "rude" way of fixing this).
If this computer is hosted at colocation company you need to either contact their support and ask them to reboot the machine (do not give them your password) or sometimes they have some sort of remote rebooting mechanism. Look through the FAQ of the colocation provider.
Closed. This question is off-topic. It is not currently accepting answers.
Want to improve this question? Update the question so it's on-topic for Stack Overflow.
Closed 11 years ago.
Improve this question
I'm sad to have to ask this question, but I'm not even sure of what to call what I'm trying to do, so Google isn't much help.
I'm doing some work on a company website from outside the company's network. Some of the assets on the site are loaded from a domain that is only visible from inside the company's network (QA) but there is a mirror of those assets on a public domain. How can I mask or forward requests to this internal domain (e.g.: http://qa.example.com/image.png) to the mirroring external domain on my laptop? (e.g. http://www.example.com/image.png). This is similar to what can be done using the host file for IP addresses. The reason I want to do this is so that the images aren't broken as I work on the site outside the office, and changing all the references in the web files is not an option. I'm on OSX Lion.
Again, sorry, dummy question, please don't flame :S
Thanks!
If the mirroring host (http://www.example.com) doesn't use host headers, you can do it through the host file, by mapping qa.example.org to www.example.com.
This will have your browser ask the www.example.com host for the http://qa.example.org/image.png. If www.example.com is configured to use host headers to control content served it will see the mismatched hostnames and fail to serve the content. In that case you need something more powerful.
Closed. This question is off-topic. It is not currently accepting answers.
Want to improve this question? Update the question so it's on-topic for Stack Overflow.
Closed 11 years ago.
Improve this question
I had some test sites setup on a server that had one IP and utilized different ports for the site like this.
www.acme.com:5000
www.acme.com:6000
This worked great until a SSL certificate was installed on the server. Now the sites above are not coming up.
How do I configure them so that they come up again?
SSL can only segmented by IP and Port. You can however can run SSL over a different port than 443 by simply adding a binding for https and a different port.
In IIS 7.x, in the Bindings for the site, you would add one for SSL and change the port:
What would also need to happen, which isn't shown in this image is the selection of the appropriate SSL certificate which would need to be configured on the server. With that set, you would then access the site by going to:
https://mysite:1234/...