Author Archives: admin

Project Artillery

Just now starting to test out this tool, but it looks like a good addition to server hardening.   https://www.trustedsec.com/downloads/artillery/

Posted in IDS/IPS | Comments closed

PCI Security Awareness Training

One of the most important parts of securing your data is ensuring that your employees have a good understanding of security. Here is a great resource to get your employees trained for free.   http://usa.visa.com/merchants/risk_management/data_security_demo/popup.html

Posted in PCI | Comments closed

Sample Incident Response Plan

1)      The person who discovers the incident will call the grounds dispatch office. List possible sources of those who may discover the incident. The known sources should be provided with a contact procedure and contact list. Sources requiring contact information may be: a)      Helpdesk b)      Intrusion detection monitoring personnel c)      A system administrator d)     A […]

Posted in Procedures and Documentation | Comments closed

Retina

http://www.eeye.com/Products/Retina/Community# Retina Network Community, a free vulnerability scanner for up to 128 IPs gives you powerful vulnerability assessment across your entire environment. With Retina Network Community you can: Reduce risk and improve security with complete vulnerability scanning across operating systems, applications, devices, and virtual environments. Comprehensive vulnerability database that includes zero-days and is continually updated […]

Posted in Scanning Tools | Comments closed

PCI Lawsuit

Wired has an article outlining a new lawsuit started by a merchant regarding fines levied by Visa and Mastercard after they have determined a breach of security in the merchants systems. The merchant states that they had no way of disputing the allegations that there was a breach of security allowing card numbers to be […]

Posted in PCI | Comments closed

Building a hardened LAMP web server.

Here we will cover some steps you can take to make sure that your LAMP (Linux, Apache, MySQL, PHP) server is secure. Ideally you would not normally run all 3 components on the same server, but in some cases it is overkill to separate them. For example this particular site is hosted on a virtual […]

Posted in Tips, Tricks, and Troubleshooting | Comments closed

ActiveMQ Starved DB Connections

This is indicated by the following error: 2011-12-18 01:25:29,132 [erSimpleAppMain] WARN JDBCPersistenceAdapter – Could not get JDBC connection: Network error IOException: Connection refused: connect java.sql.SQLException: Network error IOException: Connection refused: connect at net.sourceforge.jtds.jdbc.ConnectionJDBC2.(ConnectionJDBC2.java:410) at net.sourceforge.jtds.jdbc.ConnectionJDBC3.(ConnectionJDBC3.java:50) at net.sourceforge.jtds.jdbc.Driver.connect(Driver.java:184) at net.sourceforge.jtds.jdbcx.JtdsDataSource.getConnection(JtdsDataSource.java:188) at net.sourceforge.jtds.jdbcx.JtdsDataSource.getConnection(JtdsDataSource.java:137) at org.apache.activemq.store.jdbc.TransactionContext.getConnection(TransactionContext.java:58) at org.apache.activemq.store.jdbc.adapter.DefaultJDBCAdapter.doGetLastMessageStoreSequenceId(DefaultJDBCAdapter.java:159) at org.apache.activemq.store.jdbc.JDBCPersistenceAdapter.getLastMessageBrokerSequenceId(JDBCPersistenceAdapter.java:230) at org.apache.activemq.broker.region.DestinationFactoryImpl.getLastMessageBrokerSequenceId(DestinationFactoryImpl.java:145) at org.apache.activemq.broker.region.RegionBroker.(RegionBroker.java:122) at org.apache.activemq.broker.jmx.ManagedRegionBroker.(ManagedRegionBroker.java:99) at org.apache.activemq.broker.BrokerService.createRegionBroker(BrokerService.java:1830) […]

Posted in Tips, Tricks, and Troubleshooting | Comments closed

Using NTLM authentication with Jira 4.4

This one took me a while to find so I am going to repost it here. Unfortunately with the newer version of Jira you can not leave the username/password blank on the db configuration screen. http://confluence.atlassian.com/pages/viewpage.action?pageId=262471708   Symptoms During startup JIRA throws a BlankStringArgumentException. The database connection doesn’t work. The following appears in the atlassian-jira.log: […]

Posted in Tips, Tricks, and Troubleshooting | Comments closed

Network Diagram

Here is a very simple network diagram showing the physical connections from the internet to the various network segments. You will notice that there are 3 distinct zones, each separated from the others with a firewall. This is required by PCI standards. Only the DMZ should have direct access to and from the internet the […]

Posted in PCI, Procedures and Documentation | Comments closed

Security Tasks Calendar

The following tasks should be conducted on a periodic basis. Probably the best way to do this is to setup appointments in your calendar software. Each time a task is completed it should be documented with a ticket in your ticketing system (for example Mantis) and signed off by at least two different parties.   […]

Posted in PCI, Procedures and Documentation | Comments closed