If you have a self hosted Atlassian suite (Bitbucket, Confluence or Jira) you might want to consider creating a backup of the data to an external repository such as AWS S3 in-case your server fails. Overview This script creates a tar of all your Atlassian data and uploads it to AWS s3 using the aws… Read more »
Limit SSH connections geographically
There is a real security risk to leaving your shell connection ports exposed to the internet especially if you don’t ever intend on connecting from Zimbabwe as well as other random countries. This can limit brute force attack exposure and also save valuable resources and bandwidth by rejecting a packets before a tcp handshake. Install… Read more »
Adding Colour to Linux Bash Shell
If the standard black and grey makes you feel uninspired, you can change this by adding two lines to your .bashrc file in the users profile. 1. Edit the .bashrc file
| 1 | vi ~\.bashrc |
2. Add the following lines
| 1 2 | force_color_prompt=yes PS1='${debian_chroot:+($debian_chroot)}\[\033[01;32m\]\u@\h\[\033[00m\]:\[\033[01;34m\]\w\[\033[00m\]\$ ' |
Should you have any questions, comments or suggestions, please don’t hesitate to comment below. If you like… Read more »
How to set email alerting for SSH logins
As part of your security auditing, especially if the server is exposed to the internet, you should have an email configured to be sent to you in the event a user shells into the server. This will give you a clear indication the server has been compromised if you are not expecting a login event…. Read more »
Hardening SSHD for Security
The secure shell daemon should be hardened to prevent unauthorised access before being put into a production environment or exposed to the internet. 1. Verify the /etc/ssh/sshd_config file contains the following lines and that they are not commented out:
| 1 2 3 4 5 6 7 8 9 | Protocol 2 IgnoreRhosts yes HostbasedAuthentication no PermitRootLogin no PermitEmptyPasswords no AllowTcpForwarding no (unless needed) X11 Forwarding no (unless needed) AllowUsers <username1> <username2> (Optional) DenyUsers <username1> <username2> (Optional) |
Should you have any questions, comments or suggestions, please don’t hesitate to comment below. If… Read more »
