April 2011
Intermediate to advanced
432 pages
11h 1m
English
book
CMS Security Handbook: The Comprehensive Guide for WordPress®, Joomla!®, Drupal™, and Plone®
by Tom Canavan
Content preview from CMS Security Handbook: The Comprehensive Guide for WordPress®, Joomla!®, Drupal™, and Plone®
Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
O’Reilly covers everything we've got, with content to help us build a world-class technology community, upgrade the capabilities and competencies of our teams, and improve overall team performance as well as their engagement.I wanted to learn C and C++, but it didn't click for me until I picked up an O'Reilly book. When I went on the O’Reilly platform, I was astonished to find all the books there, plus live events and sandboxes so you could play around with the technology.I’ve been on the O’Reilly platform for more than eight years. I use a couple of learning platforms, but I'm on O'Reilly more than anybody else. When you're there, you start learning. I'm never disappointed.I'm always learning. So when I got on to O'Reilly, I was like a kid in a candy store. There are playlists. There are answers. There's on-demand training. It's worth its weight in gold, in terms of what it allows me to do.
Miscellaneous Hardening Tasks
Although this chapter provides information in many different areas about how to harden your server, some miscellaneous tasks still need attention, as discussed in the following sections.
Packet Sniffing
The term sniffing means to collect all the traffic (known as packets, as you learned earlier) going through a network interface card (NIC). Many tools can do this, and legitimate reasons exist for doing so. However, if a server in a production environment for which you have not authorized the use of a tool such as WireShark has a sniffer on it, bad things are happening.
Using WireShark, a person can access passwords, sensitive data, and more. Basically, anything that is travelling on the wire can be obtained. Figure 5-23 shows a sample capture (obtained from the WireShark website) that is decoding the traffic.
Figure 5-23: WireShark packet capture
In a capture such as this one, the traffic will allow the user sessions to be reconstructed, enabling a person with the right tools to learn what is being done. It will yield passwords, usernames, and more.
To check for sniffers, log in as the super user on your server and navigate to the following folder:
/proc/net/packet
You should see one header line looking something like this:
SK RefCnt Type Proto Iface R Rmem User Inode
If you see numbers appearing below this line, then you have a sniffer running. ...
Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
and much more.
Read now
Unlock full access
More than 5,000 organizations count on O’Reilly
O’Reilly covers everything we've got, with content to help us build a world-class technology community, upgrade the capabilities and competencies of our teams, and improve overall team performance as well as their engagement.Julian F.
I wanted to learn C and C++, but it didn't click for me until I picked up an O'Reilly book. When I went on the O’Reilly platform, I was astonished to find all the books there, plus live events and sandboxes so you could play around with the technology.Addison B.
I’ve been on the O’Reilly platform for more than eight years. I use a couple of learning platforms, but I'm on O'Reilly more than anybody else. When you're there, you start learning. I'm never disappointed.Amir M.
I'm always learning. So when I got on to O'Reilly, I was like a kid in a candy store. There are playlists. There are answers. There's on-demand training. It's worth its weight in gold, in terms of what it allows me to do.