Tag: Password

It can sometimes be hard to keep track of the many passwords that your server requires. In our password section, you'll find many tutorials designed to aid in your in your password search.

Alert Logic Security and Compliance Suite

Posted on April 2, 2021 by Liquid Web | Updated: April 15, 2021

Category: Tutorials | Tags: Alert, Alert Logic, Audit, Backups, Code Analysis, Common Questions, Compliance, Compromise, Compromised Website, Content Security Policy, Data Leak, Diagnostics, Encryption, Fail2Ban, File Permissions, Firewall, Hacking, HIPAA, IDS, Intrusion, Intrusion Detection, Intrusion Detection System, Least Privilege, Linux, Logic, LUKS, Lynis, Malware, Passphrase, Password, Password Policy, PCI, PCI Compliant, Pen testing, Permissions, Remote Code Execution, Root, Scripts, Security, Security Policy, Security Practices, Server, SFTP, SQL Injection, SSH, SSH Keys, SSL, Threat, Threat Stack, Tool, Ubuntu, VPN, Vulnerability

Reading Time: 5 minutes

Introduction

Intrusion detection systems (IDSs) are an ever-present requirement in a cybersecurity infrastructure to ensure a server or internal network is protected. An intrusion detection system is either a hardware device or software program that actively monitors a server or group of servers for network policy violations or malicious activity. Any suspicious activity, attempted attack, or policy violation is reported and logged to a centrally located security information and event management (SIEM) system database, or directly to a security administrator for further review. This article explores Liquid Web’s intrusion detection product called Alert Logic Security and Compliance Suite.

Continue reading →

How To Set up and Use Active Directory

Posted on March 29, 2021 by Liquid Web

Category: Tutorials | Tags: Active Directory, Authentication, Basic Authentication, Blended Network, Credentials, Digest authentication, Domain Controller, File Sharing, Folder Protection, IIS, IIS Manager, Linux, Netbios, Open Source, Password, Password Policy, Password Protect, Plesk, Print Services, Private Share, Ruleset, Security, Service, Service Management, Services, SMB, User Management, Windows, Windows Server, Workgroup

Reading Time: 7 minutes

Introduction

This article will discuss the importance of Active Directory (AD), along with what it is, what it does, installation, and configuration. We must state in advance that there have been entire books written about AD. While we will touch on the significant aspects of its functionality, more in-depth information can be found online.

Continue reading →

How To Install and Configure Vault

Posted on March 26, 2021 by Liquid Web

Category: Tutorials | Tags: ACL, Alert Logic, Algorithm, Algorithms, API, Audit, Backups, CentOS, Compliance, Compromise, Content Security Policy, Data Leak, Encryption, Fail2Ban, Firewall, Hacking, HashiCorp, HCL, HIPAA, IDS, Intrusion, Intrusion Detection, Intrusion Detection System, JSON, Least Privilege, Linux, LUKS, Lynis, macOS, Malware, Master Key, Passphrase, Password, Password Policy, PCI, PCI Compliant, Pen testing, Permissions, Root, Secrets, Secrets Engine, Security, Security Policy, Security Practices, Server, Shamir's Secret Sharing, SQL Injection, Threat, Threat Stack, Tool, Ubuntu, Vault, VPN, Vulnerability, Window, Zero Trust

Reading Time: 7 minutes

What is Vault?

Vault protects and secures access to multiple types of confidential data. It stores and manages sensitive password information, API keys, and access tokens that exist in a low trust environment and generates dynamic access to authenticate users to ensure they have authorized ingress and availability to a file, location, service, or application.

Continue reading →

Threat Stack Intrusion Detection System

Posted on March 24, 2021 by Liquid Web | Updated: April 21, 2021

Category: Tutorials | Tags: Audit, Backups, Code Analysis, Common Questions, Compliance, Compromise, Compromised Website, Content Security Policy, Data Leak, Diagnostics, Encryption, Fail2Ban, File Permissions, Firewall, Hacking, HIPAA, IDS, Intrusion, Intrusion Detection, Intrusion Detection System, Least Privilege, Linux, LUKS, Lynis, Malware, Passphrase, Password, Password Policy, PCI, PCI Compliant, Pen testing, Permissions, Remote Code Execution, Root, Scripts, Security, Security Policy, Security Practices, Server, SFTP, SQL Injection, SSH, SSH Keys, SSL, Threat, Threat Stack, Tool, Ubuntu, VPN, Vulnerability

Reading Time: 4 minutes

Introduction

This article will review some of the more technical aspects of Threat Stack. Threat Stack is a platform-independent intrusion detection system (IDS) designed to provide users with a unique view into various integrated server security functions. It monitors both Linux and Windows servers as well as Kubernetes or other container-based server infrastructures to observe behaviors and detect malicious, uncommon, and risky activity.

Continue reading →

What is SIEM?

Posted on March 4, 2021 by David Singer

Category: Tutorials | Tags: Audit, Backups, Code Analysis, Common Questions, Compliance, Compromise, Compromised Website, Content Security Policy, Data Leak, Diagnostics, Encryption, Fail2Ban, File Permissions, Firewall, Hacking, HIPAA, IDS, Least Privilege, Linux, LUKS, Lynis, Malware, Passphrase, Password, Password Policy, PCI, PCI Compliant, Pen testing, Permissions, Remote Code Execution, Root, Scripts, Security, Security Policy, Security Practices, Server, SFTP, SQL Injection, SSH, SSH Keys, SSL, Tool, Ubuntu, VPN, Vulnerability

Reading Time: 4 minutes

Security Information and Event Management (or SIEM) is a subset of the computer security field, where applications and services join forces with security event management and security information management. When united, these disciplines provide significantly improved real-time statistical data and threat analysis of alerts generated by the related applications. The 2021 Internet Security Threat Report from Sophos denotes that are not only the number of attacks on the rise but also the diverse nature of methodologies and vectors of incursions used. This necessitates the fact that adding a SIEM is especially warranted at this time.

Continue reading →

How to Install an SSL on a Core/Unmanaged Ubuntu Server

Posted on December 22, 2020 by David Singer

Category: Tutorials | Tags: AES, Browser, Browser Security, Camellia, CAST, Certificate Signing Request, Ciphers, Communication, CRLF, Cryptographic Functions, Cryptography, CSR, Decryption, DES, Encryption, HTTP, HTTPS, OpenSSL, Password, Password Hash, PCI, PCI Compliant, Port 443, Private Keys, Protocols, Secure Communications, Secure Socket Layer, Secure Sockets Layer, Security, SHA, SSL, SSL Certificate, S_Client, TLS, Toolkit, Transport Layer Security

Reading Time: 9 minutes

Why do I Need to Install or Reinstall My SSL Certificate?

According to Globalsign;

Continue reading →

How to Install an SSL on a Core/Unmanaged CentOS Server

Posted on December 21, 2020 by David Singer

Reading Time: 8 minutes

Why do I Need to Install or Reinstall My SSL Certificate?

According to Globalsign

Continue reading →

How to Set Up Plesk Backups in Cloud Object Storage

Posted on December 15, 2020 by David Singer | Updated: August 13, 2021

Category: Tutorials | Tags: Account Management, Amazon, Anonymous, Authentication, Backups, Basic Authentication, CLI, Command Line, Command Line Interface, Credentials, Digest authentication, Folder Protection, IIS, IIS Manager, Linux, Object Storage, Password, Password Policy, Password Protect, Plesk, Remote Backup, Ruleset, s3, Security, Storage, Tutorial, User Management, Windows, Windows Server

Reading Time: 7 minutes

By default, Plesk typically stores backups on the server. This can, however, present a risk if the hard drive or RAID fails on the server. If this ever occurs, you can possibly lose both data and your backups. To avoid this situation, Liquid Web recommends storing additional backups in a remote storage location.

Continue reading →

How To Set Up Two-Factor Authentication in cPanel

Posted on December 9, 2020 by David Richards | Updated: March 8, 2021

Category: Tutorials | Tags: 2FA, Access, Account Security, Authentication, Authentication Method, Authentication Token, CLI, Command Line, cPanel, Feature Manager, Google Authenticator, One Time Password, OTP, OTP Authentication, Passcode, Password, Passwords, QR Code, Security, Security Code, Security Policy, Security Practices, Single Factor Authentication, Time-Based One-Time Password, TOTP, Two Factor Authentication, WHM

Reading Time: 8 minutes

What is 2FA

Two-Factor Authentication (or 2FA as it often referred to) is an extra layer of security that is used to provide users an additional level of protection when securing access to an account.

Continue reading →

How to Implement Zero Trust Security in 5 Steps

Posted on November 26, 2020 by David Singer

Category: Tutorials | Tags: Audit, Authentication, Code, Code Analysis, Code Injection, Common Questions, Compliance, Compromise, Compromised Website, Content Security Policy, Data Leak, Diagnostics, Encryption, Fail2Ban, File Permissions, Firewall, Google Authenticator, Hacking, HIPAA, Least Privilege, Linux, LUKS, Lynis, Malware, Passphrase, Password, Password Policy, PCI, PCI Compliant, Pen testing, Permissions, Remote Code Execution, Root, Security, Security Policy, Security Practices, selinux, Server, SSH, SSH Keys, SSH Ports, SSL, Tools, VPN, Vulnerability

Reading Time: 6 minutes

What is Zero Trust Security?

Zero Trust security is the concept, methodology, and threat model that assumes no user, system, or service operating within a secured internal environment should be automatically trusted. It put forward that every interaction must be verified when trying to connect to a system before being granted access. This concept uses micro-segmentation, and granular edge controls based on user rights, application access levels, service usage, and relation to the location to determine whether to trust a user, machine, or application seeking to access a specific part of an organization.

Continue reading →

← Older posts