web analytics

Category Security

Securing Solr Admin Console

The solr admin console, by default, is not secured or password protected. Anyone with the link can access all the details in the console. This post describes the steps required to secure the console. The post assumes that you followed the steps in the following two posts to

  1. Install Java and Jetty in the server
  2. Install Solr in the server

Our jetty installation is at /opt/jetty which is our java web server. Our solr installation is at /opt/solr which is our search platform.

We need to modify the following three files in order to secure the admin console.

  1. /opt/jetty/etc/jetty.xml
  2. /opt/jetty/etc/webdefault.xml
  3. /opt/jetty/etc/realm.properties

If you are not sure which files are to be edited, run the following command in the server and check for java_home variable...

Read More

Secure /tmp, /var/tmp, /dev/shm in Cpanel Server

Secure /tmp

You can use the cpanel script /scripts/securetmp to secure tmp partition.

Otherwise follow the steps below. First take a backup of the fstab file, just so that you would be able to revert it to a working copy in case of any issues.

[root@abc ~]# cp –pv /etc/fstab /etc/fstab.bak

Make a 3G file for /tmp and check the current filesystem type of /tmp

[root@abc ~]# dd if=/dev/zero of=/var/tempFS bs=1024 count=3072000
[root@abc ~]# /sbin/mkfs.ext3 /var/tempFS

Now, create a backup of current /tmp

[root@abc ~]# cp -Rpf /tmp /tmpbackup

Mount the new /tmp and set required permissions

[root@abc ~]# mount -o loop,noexec,nosuid,rw /var/tempFS /tmp
[root@abc ~]# chmod 1777 /tmp

Copy the old /tmp data and edit fstab

[root@abc ~]# cp -Rpf /tmpbackup/* /tmp/
[root@abc ~]# vi /...
Read More