Rootkit Hunter release 1.4.2

이번 버전은 변경점이 꽤 많습니다.

-----------------------------------------------------------------------------------------------------------------------
!! Important notices !! - Dates in this file are formatted as DD/MM/YYYY (European format) - The rkhunter configuration file (default /etc/rkhunter.conf) will not be overwritten when using the rkhunter installer,

unless specifically requested to do so (using the '--overwrite' option). Be sure you compare your existing configuration file against the one delivered in this package, in order to optimize the file for your machine. -- * 1.4.2 (24/02/2014) New: - The 'ssh', 'sshd' and 'telnet' commands are now checked as part of the file properties test. - It is now possible to include configuration files found in a local configuration directory. This directory, called 'rkhunter.d', must be in the same directory as the main configuration file. Only files ending in '.conf' will be treated as configuration files, all other files will be ignored. The configuration options found in the files will be merged with the options found in the main configuration file and the local configuration file, if present. Both the local configuration file, and the 'rkhunter.d' configuration files, will only
override a previously specified option if the option can only be specified once, or, for list options, if the null string is given. The installer will automatically include any configuration files to the file properties test. - A new configuration file option, 'SHOW_SUMMARY_WARNINGS_NUMBER', can be set so that the summary will display the actual
number of warnings found, rather than the default message which simply states that one or more warnings were found. If no warnings were found,
 then it will be stated that '0' warnings were found.

.
.
.

관련링크 - http://sourceforge.net/projects/rkhunter/
CHANGELOG - http://rkhunter.cvs.sourceforge.net/viewvc/rkhunter/rkhunter/files/CHANGELOG



rkhunter-1.4.2.tar.gz


'Security' 카테고리의 다른 글

Rootkit Hunter release 1.4.2  (0) 2014.03.10
SecuritySpace News - May  (0) 2013.05.11
SecuritySpace News - April  (0) 2013.04.27
SecuritySpace News  (0) 2013.04.10
ModSecurity - Re-Enabling htaccess Support  (0) 2013.02.23
XE 1.5.3.4 보안 패치 배포  (2) 2012.11.22

SecuritySpace.com Security News Headlines

May 7, 2013   FTC Warns Data Broker Operations of Possible Privacy Violations
http://www.ftc.gov/opa/2013/05/databroker.shtm
Story from FTC.gov

May 7, 2013   Google left heating, cooling system open to hackers
http://www.computerworld.com/s/article/9238959/Google_left_heating_cooling_system_open_to_hackers?taxonomyId=17
Story from ComputerWorld

May 9, 2013   The Onion explains how its Twitter account was hacked
http://www.computerworld.com/s/article/9239078/The_Onion_explains_how_its_Twitter_account_was_hacked?taxonomyId=17
Story from ComputerWorld

May 9, 2013   India joins list of nations vetting Huawei, ZTE
http://www.theregister.co.uk/2013/05/10/india_to_test_huawei_and_zte_kit/
Story from theRegister

'Security' 카테고리의 다른 글

Rootkit Hunter release 1.4.2  (0) 2014.03.10
SecuritySpace News - May  (0) 2013.05.11
SecuritySpace News - April  (0) 2013.04.27
SecuritySpace News  (0) 2013.04.10
ModSecurity - Re-Enabling htaccess Support  (0) 2013.02.23
XE 1.5.3.4 보안 패치 배포  (2) 2012.11.22

SecuritySpace.com Security News Headlines

Apr 23, 2013  AP Twitter hack prompts fresh look at cybersecurity needs           

http://www.computerworld.com/s/article/9238637/AP_Twitter_hack_prompts_fresh_look_at_cybersecurity_needs?taxonomyId=17
Story from ComputerWorld

Apr 23, 2013  Social engineering in penetration tests: 6 tips for ethical (and legal) use
http://www.networkworld.com/news/2013/042313-social-engineering-in-penetration-tests-269042.html
Story from NetworkWorld

Apr 24, 2013  Vulnerable terminal servers could let bad guys hack stoplights, gas pumps
http://www.computerworld.com/s/article/9238665/Vulnerable_terminal_servers_could_let_bad_guys_hack_stoplights_gas_pumps?taxonomyId=17
Story from ComputerWorld

Apr 24, 2013  DHS use of deep packet inspection technology in new net security system raises serious privacy questions
http://www.networkworld.com/news/2013/042413-dhs-deep-packet-inspection-269078.html
Story from NetworkWorld

Apr 25, 2013  Senate committee limits government electronic surveillance
http://www.computerworld.com/s/article/9238685/Senate_committee_limits_government_electronic_surveillance?taxonomyId=17
Story from ComputerWorld

Apr 25, 2013  Big data can be a big headache for data defenders
http://www.computerworld.com/s/article/9238683/Big_data_can_be_a_big_headache_for_data_defenders?taxonomyId=17
Story from ComputerWorld

Apr 25, 2013  Crypto guru: Don't blame users, get coders security training instead
http://www.theregister.co.uk/2013/04/23/security_awareness_training/
Story from theRegister

Apr 26, 2013  LivingSocial gets hacked, 50 million users told to reset passwords
http://www.computerworld.com/s/article/9238732/LivingSocial_gets_hacked_50_million_users_told_to_reset_passwords?taxonomyId=17
Story from ComputerWorld

'Security' 카테고리의 다른 글

Rootkit Hunter release 1.4.2  (0) 2014.03.10
SecuritySpace News - May  (0) 2013.05.11
SecuritySpace News - April  (0) 2013.04.27
SecuritySpace News  (0) 2013.04.10
ModSecurity - Re-Enabling htaccess Support  (0) 2013.02.23
XE 1.5.3.4 보안 패치 배포  (2) 2012.11.22

http://www.securityspace.com/


SecuritySpace.com Security News Headlines

Mar 25, 2013  Researchers uncover vSkimmer malware targeting point-of-sale systems
http://www.computerworld.com/s/article/9237828/Researchers_uncover_vSkimmer_malware_targeting_point_of_sale_systems?taxonomyId=17
  Story from ComputerWorld

Mar 26, 2013  Most Java-enabled browsers vulnerable to widespread Java exploits, Websense says
 http://www.computerworld.com/s/article/9237912/Most_Java_enabled_browsers_vulnerable_to_widespread_Java_exploits_Websense_says?taxonomyId=17
Story from ComputerWorld

Mar 26, 2013  Dirty smartphones: Devices keep traces of files sent to the cloud
 http://www.networkworld.com/news/2013/032613-dirty-smartphones-268114.html
Story from NetworkWorld

Mar 26, 2013  Antivirus software fails to spot new malware, Palo Alto finds
  http://news.techworld.com/security/3437242/antivirus-software-fails-spot-new-malware-palo-alto-finds/
Story from TechWorld

Mar 28, 2013  Sprint pledges not to use Huawei, lawmaker says
  http://www.computerworld.com/s/article/9237972/Sprint_pledges_not_to_use_Huawei_lawmaker_says?taxonomyId=17
Story from ComputerWorld

Mar 28, 2013  FBI on trial for warrantless Stingray mobile spying
  http://www.theregister.co.uk/2013/03/29/fbi_stingray_mobile_tracking/
Story from TheRegister



'Security' 카테고리의 다른 글

SecuritySpace News - May  (0) 2013.05.11
SecuritySpace News - April  (0) 2013.04.27
SecuritySpace News  (0) 2013.04.10
ModSecurity - Re-Enabling htaccess Support  (0) 2013.02.23
XE 1.5.3.4 보안 패치 배포  (2) 2012.11.22
XE 1.5.2.6 보안패치  (2) 2012.06.26

 


보안 문제로 한동안 지원하지 않았던 .htaccess파일을 다시 지원할지 여부를 묻는 글이 올라왔습니다.

편의성을 높이고 보안성을 약간 희생한것이라 볼 수 있는데 다시 논의가 되는것을 보니 해당 기능을 요구하는

사람들이 꽤 많았나봅니다.


We are seeking feedback from the community on the idea of re-enabling Apache.htaccess support for
ModSecurity. 

https://www.modsecurity.org/tracker/browse/MODSEC-58

This functionality existed in the v1 branch of ModSecurity -

http://modsecurity.org/documentation/modsecurity-apache/1.9.3/html-multipage/03-configuration.html#N1027D

It was removed due to valid security concerns, namely that attackers could easily  bypass the ModSecurity
protections if they could just upload a .htaccess file with – SecFilterEngine Off in it While the security concerns
are valid, we also realize that there are many, many Hosting Providers  who are using old ModSecurity v1
strictly because they need this capability to allow their customers to use  .htaccess files for adding exceptions.
Without this feature, end users are flooding the Help Desk/Support  forums with requests to add exceptions for
ModSecurity rules for their sites.

So, we are considering adding support for this feature back into ModSecurity v2.7.x. 
It will NOT be enabled by default and would require the user to use a new --enable-htaccess-config configure
flag and re-compiling.  Users would have to understand the tradeoffs with regards to security and allowing
distributed configurtions in a multi-user environment.  
......


원본글은 아래 링크에서 보실 수 있습니다..

http://article.gmane.org/gmane.comp.apache.mod-security.user/10024


'Security' 카테고리의 다른 글

SecuritySpace News - April  (0) 2013.04.27
SecuritySpace News  (0) 2013.04.10
ModSecurity - Re-Enabling htaccess Support  (0) 2013.02.23
XE 1.5.3.4 보안 패치 배포  (2) 2012.11.22
XE 1.5.2.6 보안패치  (2) 2012.06.26
1.5.2.5 배포(보안패치 포함)  (0) 2012.05.14

+ Recent posts