Matt Clemons

Engineering Principles for IT SecurityPrinciples and Practices for Securing ITComputer Security Act of 1987Government Information Security Reform ActFIPSPrivacy Act of 1974Recommended Security Controls

NCSA Security PoliciesSANS Policy TemplatesInformation Security Policies and Standards

Risk Management Guide For IT SystemsSEPM Certificate ProgramsRisk Management and Business Continuity PlanningPerformance Measurement Guide for Information SecurityThreat and Risk Assessment Working Guide

I have started my training for my CISSP, so many many cool links will be posted on this site. Well, cool if you’re a huge nerd. Here’s the first few. Pentesting Framework:http://www.vulnerabilityassessment.co.uk/index.htm CISSP Training Resources:http://cccure.org/ISO 17799http://www.17799.com/http://www.isaca.org/http://www.itil-officialsite.com/home/home.asp

Here’s my fig for Ubuntu 8.10 Server. $ cat /etc/apache2/sites-available/splunk<virtualhost X.X.X.X:80> ServerAdmin root@localhost ServerAlias splunk.example.com ProxyPass / http://127.0.0.1:8000/ ProxyPassReverse / http://127.0.0.1:8000/ ErrorLog /var/log/splunk.example.com-error_log CustomLog /var/log/splunk.example.com-access_log common</virtualhost><proxy http://127.0.0.1:8000/*> Order deny,allow Deny from all Allow from all AuthName “splunk.example.com” AuthType Basic AuthUserFile /var/www/.htpasswd Require valid-user</proxy>$ cat /var/www/.htaccessAuthUserFile /var/www/.htpasswdAuthName “Authorized Users Only”AuthType Basicrequire Read more

Get the cpufrequtils package from http://www.linuxpackages.netCreate a script like so: #!/bin/bashmodprobe p4-clockmodmodprobe freq_tablemodprobe cpufreq_ondemandmodprobe cpufreq_conservativemodprobe cpufreq_powersavemodprobe cpufrew_performancecpufreq-set -g performance You can use any of the governor options listed above as the g option for cpufreq-set. cat /proc/cpuinfo.

I’ve had this problem for a while, and lately it really got on my nerves. I run compiz on my work and home machines with dual monitors and twinview. When I maximize a window, it really maximizes and across both screens. Very very annoying. No matter what version of compiz Read more

I’ve been working with Websense for many years. It’s very pricey and since not everyone can afford it, I have had to find a workaround. The answer for me is simply safesquid. Here’s how I did it with very little user intervention, and no touching of client pcs/macs. Step 1. Read more

For a while now, I’ve been trying to find a way to run a sniffer at some location and monitor it remotely via a web page or some curses based GUI. I’ve been working with Snort for years. The web interfaces like Base are ok, but I’ve always wanted a Read more

I was tasked with turning a bunch of LG TVs on and off for a digital signage project, so I wrote a little C program with some borrowed code from LinuxMCE. Compiled on Windows with dev-c++. Below is the source code. Now I just set up batch files to turn Read more

If you want to restrict a user to only their home directory while using sftp or ssh, you will want to first restrict the user to their home directory. First change the users shell to rbash, then jail them into their home directory. cd /bin; ln -s bash rbash edit Read more

I recently installed one of these at my house, and have to say that I’m very impressed. It was easy to install and tweaking the hardware wasn’t too bad. The admin web interface makes it all worth it. The TV UI is amazing. Imagine controlling every device in your home Read more

This is one of the easiest and cheapest ways to move a physical linux server to vmware. 1. Boot to the Acronis server cd.2. Create a backup image of the entire disk.3. Create an Ubuntu virtual machine in VMware workstation using drive size equivalent to the source server. You do Read more