Category: Security

Dec 24

OpenVPN and Yubikey simplified

Now we can use OpenVPN and the Yubikey + YubiCloud OTP service to do authentication for VPN connections. Thanks to the OpenVPN team for fixing issues preventing this prior to v2.4.3. More details on the page: OpenVPN OTP with a Yubikey

Mar 19

Staying safe online – is it even possible?

So every once in a while, you come across something in IT Security that just makes you want to cry. Usually, these are chained exploits that when executed properly have devastating effects. Take the latest Pwn2Own competition. One of the successful hacks there was epic. And scary. In a nutshell, an ‘Edge’ browser exploit to …

Continue reading

Dec 03

Central management of Lets Encrypt SSL certificates

Just wrote up a quick article on how I implemented centralised management of SSL Certificates issued via Lets Encrypt. Yeah, its an article – its a bit big for a post 🙂 Using centralised management with Lets Encrypt

Aug 02

DNS Oops. Crashing bind from remote

It’s been a while since my last post – and this one is a doozey. So Bind is one of the most popular DNS servers on the planet. Just about everyone runs it. So when news breaks that a specially crafted request can cause the named process to exit, then a problem is presented. Enter …

Continue reading

Jan 31

Java update broke the Dell DRAC 5 remote management cards!

So the openjdk in most linux distros has now been upgraded to v1.8. This has a good bug fix regarding the whole SSLv3 Poodle vulnerability. This has one problem. The Dell DRAC remote management cards installed in a lot of Dell servers relies on SSLv3 to operate. Without this, you can get into the web …

Continue reading

Load more