web analytics

Subscribe to Blog via Email

Enter your email address to subscribe to this blog and receive notifications of new posts by email.

Join 5 other subscribers


Category Security

Securing Solr Admin Console

May 18, 2016 Posted in  Misc, Security No comments

The solr admin console, by default, is not secured or password protected. Anyone with the link can access all the details in the console. This post describes the steps required to secure the console. The post assumes that you followed the steps in the following two posts to

  1. Install Java and Jetty in the server
  2. Install Solr in the server

Our jetty installation is at /opt/jetty which is our java web server. Our solr installation is at /opt/solr which is our search platform.

We need to modify the following three files in order to secure the admin console.

  1. /opt/jetty/etc/jetty.xml
  2. /opt/jetty/etc/webdefault.xml
  3. /opt/jetty/etc/realm.properties

If you are not sure which files are to be edited, run the following command in the server and check for java_home variable...

Read More

Secure /tmp, /var/tmp, /dev/shm in Cpanel Server

April 30, 2013 Posted in  Misc, Security No comments

Secure /tmp

—————–
You can use the cpanel script /scripts/securetmp to secure tmp partition.

Otherwise follow the steps below. First take a backup of the fstab file, just so that you would be able to revert it to a working copy in case of any issues.

[root@abc ~]# cp –pv /etc/fstab /etc/fstab.bak


Make a 3G file for /tmp and check the current filesystem type of /tmp


[root@abc ~]# dd if=/dev/zero of=/var/tempFS bs=1024 count=3072000
[root@abc ~]# /sbin/mkfs.ext3 /var/tempFS


Now, create a backup of current /tmp


[root@abc ~]# cp -Rpf /tmp /tmpbackup


Mount the new /tmp and set required permissions


[root@abc ~]# mount -o loop,noexec,nosuid,rw /var/tempFS /tmp
[root@abc ~]# chmod 1777 /tmp


Copy the old /tmp data and edit fstab


[root@abc ~]# cp -Rpf /tmpbackup/* /tmp/
[root@abc ~]# vi /...
Read More