tnk479 – WindowsTechs.com

What’s a good approach to finding the source application that’s attempting to access a database with an incorrect password? [migrated]

Posted on January 27, 2023 by tnk479

In order to improve our security posture, we changed several dozen internal applications over to using a new username and password to access an AS400 database a few months back.
However, there is some mystery process running on a Windows S… Continue reading What’s a good approach to finding the source application that’s attempting to access a database with an incorrect password? [migrated]→

security certificate does not specify Subject Alternative Names

Posted on March 23, 2022 by tnk479

We have a Windows Server 2016 that we use as a web server hosted on premise and we host numerous web applications under the Default Web Site in IIS. All applications are reached by using the server name, only. There are no fully qualified … Continue reading security certificate does not specify Subject Alternative Names→

I started a vault server with the -dev flag and the UI is empty. What am I doing wrong? [closed]

Posted on January 25, 2022 by tnk479

I downloaded Hashicorp Vault. I "installed" it which is just unzipping the archive and moving the vault application to wherever I want to run it from. I also added the path to the PATHS environment variable so that I can run the … Continue reading I started a vault server with the -dev flag and the UI is empty. What am I doing wrong? [closed]→

How do I create a pem file that I can use in a console app to authenticate to an SFTP service?

Posted on June 11, 2021 by tnk479

I’m writing a little program that downloads some basic data, consolidates it into a CSV and drop it to an SFTP server. I’m told that I need to generate a pem file. My search online suggests that pem is a private/public key pairing and that… Continue reading How do I create a pem file that I can use in a console app to authenticate to an SFTP service?→

To authorize an App Service to get keys from Key Vault, do I need to use the IAM blade or the Access Policies blade? [migrated]

Posted on March 25, 2020 by tnk479

I’m unclear about how I authorize an Azure App Service to get a key from Azure Key Vault using System Assigned Managed Service Identities. Do I use the IAM blade and give the App Service Identity the Reader role? Or do I got to the Access … Continue reading To authorize an App Service to get keys from Key Vault, do I need to use the IAM blade or the Access Policies blade? [migrated]→

What is the security justification for blocking all outbound ports/protocols except HTTP over 80/443? [duplicate]

Posted on November 20, 2019 by tnk479

This question already has an answer here:

Is there any meaning in only allowing port 80 and 443 today?

4 answers

My compa… Continue reading What is the security justification for blocking all outbound ports/protocols except HTTP over 80/443? [duplicate]→