Configuration – Page 10 – WindowsTechs.com

SSH to IP instead of to fully qualified hostname: does this reduce MITM risk?

Posted on January 26, 2018 by sampablokuper

I am applying configuration management to a VPS hosted by a VPS hosting company. Changing the hosting company is not an option, unfortunately.

This VPS has the following properties:

when newly-imaged or re-imaged, it gener… Continue reading SSH to IP instead of to fully qualified hostname: does this reduce MITM risk?→

What is Configuration Drift?

Posted on January 23, 2018 by Irfahn Khimji

In a previous post by my colleague Irfahn Khimji, he spoke about how ensuring devices on your network is a great way to minimize the attack surface of your infrastructure. Organizations like the Center for Internet Security (CIS) provide guidelines on … Continue reading What is Configuration Drift?→

SSHguard: Does one to change any configuration for basic usage of the program?

Posted on January 20, 2018 by Arcticooling

I use Ubuntu 16.04 and I’ve installed SSHGuard (sudo apt-get install sshguard -y) to protect from Brute Force Attacks (BFAs) on whatever user.

From reading about the program in ArchLinux wikipedia and in the SSHguard website… Continue reading SSHguard: Does one to change any configuration for basic usage of the program?→

Permissions for configuration file for program run as root that must be modifiable by SFTP

Posted on January 20, 2018 by sampablokuper

A shell script (myscript) will be run as root, by cron. It reads IP addresses from a configuration file, and updates iptables to whitelist those IPs for inbound connections.

myscript uses a regexp (regular expression) to par… Continue reading Permissions for configuration file for program run as root that must be modifiable by SFTP→

It’s 2018, Secure Your Budgets with Secure Configurations!

Posted on January 3, 2018 by Irfahn Khimji

Happy 2018, everyone! With the start of a new year, everyone makes resolutions that they may or may not be able to keep. One of the most common New Year’s resolutions (and arguably the most difficult to keep) is to exercise, get healthy, and/or l… Continue reading It’s 2018, Secure Your Budgets with Secure Configurations!→

Why default settings are generally weaker than optimal ones?

Posted on December 24, 2017 by Alexey Novikov

In nearly all software (that I’ve used so far) that allows to set the encryption settings, default settings are kind of weak. There is always something that you should tweak to achieve better protection. It applies to regular… Continue reading Why default settings are generally weaker than optimal ones?→

SFTP Group based access control

Posted on November 20, 2017 by Kyler45

I’m attempting to set up an SFTP Server for our company. From what I was reading, regarding sshd_config, if I have several “Match group” directives, a user can match multiple of those to be able to access both sets of folders… Continue reading SFTP Group based access control→

SFTP Group based access control

Posted on November 20, 2017 by Kyler45

Chicken-and-egg-problem: What’s the intended secure way of installing anti-virus software with online installers?

Posted on November 19, 2017 by O. R. Mapper

In various places (notably, the English Microsoft Answers forums1), people are quick to note that a Windows machine should not get connected to the internet without any anti-virus software installed. Otherwise, infections are… Continue reading Chicken-and-egg-problem: What’s the intended secure way of installing anti-virus software with online installers?→

Directory listing for icons and image folders

Posted on October 31, 2017 by user187205

I am testing web application on Apache server, which allows to list directories such as https://192.168.100.00:443/icons/ and https://192.168.100.00:443/images/. This directories contains only images.

Should I recommend to … Continue reading Directory listing for icons and image folders→