A question can only have one accepted answer. Are you sure you want to replace the current answer with this one?
You previously marked this answer as accepted. Are you sure you want to unaccept it?
I already install and configure in Security onion on Ubuntu 12.04. When I open Snorby after that detect something but not block anything. So, I want to know, Security Onion can block some file, IP address or can not.
Any Idea please?
Hello,
Can you perhaps go into a bit more detail? It’s not clear exactly what is happening with the limited information provided.
Also keep in mind, it appears that their software suggests it’s only compatible with Ubuntu 14.04 so you may want to consider using an Ubunt 14.04 droplet and see if your problems persist.
I getting problem with Ubuntu repository on Ubuntu 16.04 and 18.04 droplets created in London. For droplets created in Frankfurt everything works out of box. Does anyone experiencing this too? ``` # apt-get update Ign:4 http://security.debian.org bionic/updates InRelease Ign:1 http://lon1.mirrors.digitalocean.com/debian bionic InRelease Err:6 http://security.debian.org bionic/updates Release 404 Not Found [IP: 151.101.60.204 80] Ign:2 http://lon1.mirrors.digitalocean.com/debian bionic-updates InRelease Ign:3 http://lon1.mirrors.digitalocean.com/debian bionic-backports InRelease Err:5 http://lon1.mirrors.digitalocean.com/debian bionic Release 404 Not Found [IP: 5.101.111.50 80] Err:7 http://lon1.mirrors.digitalocean.com/debian bionic-updates Release 404 Not Found [IP: 5.101.111.50 80] Err:8 http://lon1.mirrors.digitalocean.com/debian bionic-backports Release 404 Not Found [IP: 5.101.111.50 80] Hit:9 https://repos.sonar.digitalocean.com/apt main InRelease Reading package lists... Done E: The repository 'http://security.debian.org bionic/updates Release' does not have a Release file. N: Updating from such a repository can't be done securely, and is therefore disabled by default. N: See apt-secure(8) manpage for repository creation and user configuration details. E: The repository 'http://mirrors.digitalocean.com/debian bionic Release' no longer has a Release file. N: Updating from such a repository can't be done securely, and is therefore disabled by default. N: See apt-secure(8) manpage for repository creation and user configuration details. E: The repository 'http://mirrors.digitalocean.com/debian bionic-updates Release' no longer has a Release file. N: Updating from such a repository can't be done securely, and is therefore disabled by default. N: See apt-secure(8) manpage for repository creation and user configuration details. E: The repository 'http://mirrors.digitalocean.com/debian bionic-backports Release' does not have a Release file. N: Updating from such a repository can't be done securely, and is therefore disabled by default. N: See apt-secure(8) manpage for repository creation and user configuration details. ```
Hi everyone, I could use a little advise regarding running multiple Wordpress sites on a single server, as multiple users, and making sure the webserver has the proper permissions to make changes while making sure security is in order. *What I like to achieve...* A configuration in which I can use a user per website, and where the webserver can make changes (i.e. uploading media, plugins, etc), without relying on chmod (not having to use chmod at all feels better). Where the user can make changes to it's directory (e.g. a git working directory for automatic deployments). When the users can't change each other files. *I wonder...* Is the configuration described below a proper one? Should I do something differently? Are there better solutions? *Some backstory...* For a while now I have been setting up servers for websites and web apps. Most of the time I run multiple websites from the same server. Could be a staging and production environment, but also different (client) websites. Sometimes I add CI to the mix using CircleCI. Basically CircleCI pushes to a repository on the server, this repo then updates the working directory which could be a web app or Wordpress theme. Everything currently works okay, although I think security, and how things are set up, could be improved. Currently my configuration often looks like... **Users** ``` somewebsite # User on the server with the directory `/var/www/somewebsite` someotherwebsite # Another user on the server with the directory `/var/www/someotherwebsite` ``` When needed I use these users to make changes to the contents. **Directories** ``` /var/www/somewebsite/html # Wordpress website /var/www/somewebsite/somewebsite.git # Git repo with a working dir set to `/var/www/somewebsite/html/wp-content/themes/sometheme` /var/www/someotherwebsite/html # Some other website /var/www/yetanotherwebsite/html # Yet another Wordpress website ``` **Permissions** The contents of `/var/www/somewebsite/html`, `/var/www/someotherwebsite/html`, and `/var/www/yetanotherwebsite/html` belong to the user and group `www-data`. Although, when I would upload something manually later, this upload (logically) belongs to the user I am using for access (not `www-data`). The users `somewebsite`, `someotherwebsite`, and `yetanotherwebsite` have been added to the `www-data` group. I believe this means `someotherwebsite` could make changes to `somewebsite` (and vice versa). Which would be better if it couldn't. **Trivia** * Depending on the requirements I use Apache or nginx. * SSH keys are used for authentication, Password Authentication is disabled. I understand my current configuration isn't the most straightforward one. I do hope I clarified the most of it. I read a lot of information regarding the subject. But It's hard to find something which is applicable to my situation. This tutorial was very useful https://www.digitalocean.com/community/tutorials/how-to-set-up-multiple-wordpress-sites-on-a-single-ubuntu-vps. Any tips, feedback and insights are welcome!
I am currently developing an APP that makes A UDP connection to another host to send commands (old quake3 engine game server) so you can moderate your gameserver without having to boot the game up on your pc. I'm using laravel (overkill, but I'm learning the framework as well) and locally it works just fine, I can send the command and retrieve the message just as i want it to be. Now when deploying, the app doesn't seem to work anymore, it doesn't send any commands and I can't seem to debug that, udp doesn't have status (sometimes shows it connected even though the host is dead) so I'm running out of ideas, the firewall is set-up to allow outgoing UDP/TCP connections(I've tried with the firewall disabled as well) to the port I'm sending commands to (29070) and when asking the support about any possible blocking they said no. As you guys are probably way more experienced than me, is this a PHP problem or a VPS one? ``` $this->fp = fsockopen($this->host, $this->port, $this->errno, $this->errstr, 5); socket_set_timeout($this->fp, 5); ``` and if I do ``` if ($this->fp) echo 'sucess'; ``` It echoes out sucess, but you can't really trust that when it comes to UDP connections. How should I proceed? Thanks. ps used lemp and lamp on ubuntu 16.04 ### also I've looked around for another laravel host service and none of them accept outgoing and/or incoming UDP connection, which kill's my application, so if any of you have any ideas please share, i'm desperate.
Hello, I lost my laptop on which i have set up ssh connection to my droplets. Now, I got a new machine with ubuntu 15.04 but i dont know how i can reset so as i can ssh my remote server via this new machine. Suprisingly, I had not backed up my ssh key