Mounting folders through SSH
avatar

Posted on July 7, 2011 by

One of the first rules of security is to not have any ports open which you do not need to have open.  That is also pretty common sense.  One problem you run into though is you still need to access data from one machine on another.  Samba is generally used for file sharing but since it follows the windows standard for file sharing it announces your shares to anyone who asks.

If it is just you accessing your files you can actually mount a folder from another system using sshfs.  Sshfs is available in all of the major distro’s repositories so it should be easy to find.

The first step is to just create a folder which you want to use as a mount point.  Once you do that you just use the following command:

sshfs <user>@<machine>:/path/on/remote/system /local/path

After you do that your local folder will now display the contents of your remote folder.

If you want to allow other users to access the folder as well you need to add all_other as shown below.

sshfs -o allow_other,default_permissions

Posted in Arch, CentOS, Fedora, Guides, Linux | Tagged , , , , | Leave a comment

Connection Throttling
avatar

Posted on July 7, 2011 by

I have begun to throttle connections to the website.  This is because the internet bots which search engines use have been pounding the server to the point of making it unavailable.  I believe this will make the site run faster for everyone.

Posted in Harptabs.com, News | Leave a comment

Improvements to Site Security
avatar

Posted on July 5, 2011 by

I have been improving site security along with putting in lots of new features to go along with our new server.  One of the things I have done is I have changed the file upload to not allow HTML and PHP file types.  This is to protect not just the site but also vistor’s computers from links which could be potential dangerous.

Posted in Harptabs.com, News | Leave a comment

Advanced Editing
avatar

Posted on July 5, 2011 by

I have added the ability to spice up all of the places you add text on the website.  It should work well but if you have any problems just let me know.

Posted in Harptabs.com, News | Leave a comment

Setting a Lock-out Policy
avatar

Posted on June 29, 2011 by

Setting a lock out policy in CentOS or Fedora is very easy.

  1. edit /etc/pam.d/system-auth

auth required pam_tally.so onerr=fail no_magic_root
account required pam_tally.so deny=3 unlock_time=3600 no_magic_root reset

onerr=fail if there is a problem opening the file for some reason fail login
no_magic_root this means if the module is called with a uid=0 then the counter is incremented, this is for launching services
deny=3 lockout will occur if the user exceeds 3 logins
reset means if the sign in correctly then the account will be reset
unlock_time=3600 number of seconds before unlock

Posted in CentOS, Fedora, Linux | Tagged , | Leave a comment