I’ve had a pretty easy time using Nikto over the years. Nikto is a security scanner specific to web servers. I did a post on Nessus recently, but Nessus is a tool for looking at any service running on a system and trying to find available vulnerabilities. Nikto is can do many of the same things, but is specific and therefore more in depth for web servers. This involves looking at things like CGI directories and robots.txt files as well. Nikto is written in Perl. In order to do everything Nikto can do there are a few perl mules that need to be installed. But let’s look at one of…
-
-
Removing 'serveradmin settings' Entries in OS X Server
I frequently write about adding entries in OS X Servers configuration database using serveradmin. But there are a lot of causes for various symptoms in OS X and trying some post of mine might end up biting you later, if it doesn’t fix your problem and you end up leaving the keys in place in OS X Server. Therefore, let’s look at something I might tell you to do, such as set a mail relay host from serveradmin: serveradmin settings mail:postfix:smtp_auth_relay_dict:smtp_auth_relay_host = mdm.krypted.com Once the setting has been configured, you might want to get rid of it outright. Now, this one happens to be exposed in the GUI, so you…
-
Apple Configurator 1.1 Released
Apple Configurator 1.1 was released on Monday. Configurator is updated through the App Store. It comes with a few new features, indicated on the App Store download page. My favorite part is probably that rather than let me do stupid things (which I am apt to do) I now get a screen warning me that I’m doing something stupid if Configurator doesn’t complete a sanity check against one of the profiles: Overall, the two updates that we’ve gotten to Configurator have been minor. The features and options, which make up the strategies that you deploy Configurator with, have remained pretty much the same. I look forward to seeing continued updates.
-
A Cheat Sheet For Using pf in OS X Lion and Up
I’ve done plenty of writing on the Application Layer Firewall (ALF) and the IP FireWall (IPFW) in OS X over the years. There will be more on ALF coming in “July” but in the meantime, there’s something I hadn’t written much about in Lion and that’s the pf implementation. To get started, let’s look at the /etc/pf.conf configuration file that comprises pf: scrub-anchor "com.apple/*" nat-anchor "com.apple/*" rdr-anchor "com.apple/*" dummynet-anchor "com.apple/*" anchor "com.apple/*" load anchor "com.apple" from "/etc/pf.anchors/com.apple" Here, you can see that pf is configured with a number of anchors. An anchor is a collection of rules and tables. Basically, the anchor file being loaded is /etc/pf.anchors/com.apple. In here, we…