Monthly Archives: November 2015

How To Search All Files By Date Recursively In Linux

Posted by on November 25, 2015 2 comments
Search Files By Date Recursively In Linux

Have you ever wanted to view a list of all files or subdirectories within a directory in Linux and order them by when they were last changed or modified? Then you have come to the right place! Here we are going to provide and explain some useful commands that when piped together will give us this result, allowing us to recursively list files and directories by date.

This is one of my favourite commands to use when trying to build a timeline of events, for instance if a server or website has been compromised and you want to see when files have been modified with malicious content. By seeing other files that were modified around the same time you can get a better idea of what took place and when, allowing you to correlate these events with your logs.

Read more »

How To Synchronize Time in Linux with NTP Peers

Posted by on November 18, 2015 4 comments
Time

There are many different services such as Kerberos that depend on the time of a Linux system being accurate in order to function correctly. It is therefore important to ensure that system time is synchronized with an external source so that it can be kept accurately up to date, this is done with the network time protocol (NTP).

Here we are going to cover how to configure chronyd or ntpd in Linux to connect to an NTP server and keep time in sync. Read more »

Use SELinux Port Labeling To Allow Services To Use Non-Standard Ports

Posted by on November 11, 2015 6 comments
SELinux Ports

By default SELinux policy defines the ports that a particular service is allowed bind to and make use of with port labeling. This increases system security by preventing random services or malicious code from being able to bind to a well known defined port that may otherwise be used by a legitimate service.

In order to change a service to use a non standard port we must change SELinux policy and specify the SELinux port types that are allowed to use specific ports.

Read more »

Deploy a Basic CGI Application With Apache

Posted by on November 5, 2015 3 comments
Script

Most web pages don’t serve only simple static content, they typically process and display all sorts of different dynamically generated contents. This is usually done via scripting, whereby the web server will process and execute a script and the result will be displayed to the user.

While CGI (Common Gateway Interface) is fairly old it does allow the web server to execute various types of scripts. Scripts such as PHP, Perl or Python can be used for example, allowing us to combine the power of scripting into our web pages.

Read more »

Overview of Ruxcon 2015

Posted by on November 3, 2015 No comments
Ruxcon 2015 Overview

I attended the Ruxcon 2015 computer security conference this year in Melbourne Australia for my 6th consecutive year and thought I’d post an overview of the event. I’ll cover the awesome presentations that I saw as well as the capture the flag hacking game where I spent most of my time.

Read more »