Category: Security

Mar 19

Staying safe online – is it even possible?

So every once in a while, you come across something in IT Security that just makes you want to cry. Usually, these are chained exploits that when executed properly have devastating effects. Take the latest Pwn2Own competition. One of the successful hacks there was epic. And scary. In a nutshell, an ‘Edge’ browser exploit to …

Continue reading »

Dec 03

Central management of Lets Encrypt SSL certificates

Just wrote up a quick article on how I implemented centralised management of SSL Certificates issued via Lets Encrypt. Yeah, its an article – its a bit big for a post 🙂 Using centralised management with Lets Encrypt

Aug 02

DNS Oops. Crashing bind from remote

It’s been a while since my last post – and this one is a doozey. So Bind is one of the most popular DNS servers on the planet. Just about everyone runs it. So when news breaks that a specially crafted request can cause the named process to exit, then a problem is presented. Enter …

Continue reading »

Jan 31

Java update broke the Dell DRAC 5 remote management cards!

So the openjdk in most linux distros has now been upgraded to v1.8. This has a good bug fix regarding the whole SSLv3 Poodle vulnerability. This has one problem. The Dell DRAC remote management cards installed in a lot of Dell servers relies on SSLv3 to operate. Without this, you can get into the web …

Continue reading »

Jan 29

Two factor SSH auth with Yubikeys

A while ago I wrote about how to do this exact thing but with an older version of openssh. If you’re running a newer version of SSH, then the command syntax has been updated somewhat. Firstly, once you’ve got your yubikey, you’ll need to enable EPEL for EL6/7 and install the pam_yubico package. You’ll then …

Continue reading »

Load more