Collaborate Disseminate
I decided to move to self-hosting because it is cheaper.
What I want to host:
My personal website
Some apps for fun
Maybe later a Honeypot
I have my old laptop acting as the main host. It has Ubuntu installed with virtualbox.
What I plan… Continue reading Port knocking through NAT for self-hosted server
I decided to move to self-hosting because it is cheaper.
What I want to host:
My personal website
Some apps for fun
Maybe later a Honeypot
I have my old laptop acting as the main host. It has Ubuntu installed with virtualbox.
What I plan… Continue reading Port knocking through NAT for self-hosted server
The server is based on Linux and applications are based on Android and iOS.
I was looking through "Linux Hardening Guide" as someone recommended it to me in order to harden Linux servers. I looked at the syllabus of the book, but… Continue reading How to learn to secure Web Applications? [closed]
I’m wondering this. I am planning to resolve Vulnerability Assessment and Penetration Testing reports. Do I need to learn how to do such attacks in order to harden the server?
Or don’t I?
Continue reading Do I need to study how to find security flaws in order to harden my Linux server?
We are looking into reviewing our organization OS/DB hardening checklist (done by predecessor). We’re aware that there are various benchmarks out there like CIS & STIG to guide on that, and the current checklist is rather a short list … Continue reading OS/DB Hardening Checklist Drafting Process
I’m looking into WDAC and the option to use Microsoft’s ISG for files that are not explicitly allowed or denied caught my interest. Unfortunately I haven’t been able to find any information on what is sent to the ISG to make the known good… Continue reading What information does the Microsoft Intelligent Security Graph use for querying files?
UPDATE : i know i modify the post significantly, will try to not do that anymore. Please read from scratch
Let’s imagine we have a machine that holds customer private keys to various crypto assets, that is vital to secure and should it be … Continue reading Theoretical unbreakable security for a single compute instance/machine [closed]
What are some good software may improve security of a Linux based OS, in any aspect without drastically changing how you interact with it (like SElinux). Some examples are below:
Apparmor & Firejail for isolation
Flatseal for isolation… Continue reading General software to harden a Linux OS [closed]
I’ve been looking into rowhammer attacks and mitigations and there are two (what seem to be) mitigations that I’ve seen that are actually implemented in currently available hardware and software, but aren’t mentioned in any studies I’ve se… Continue reading Rowhammer mitigations in current hardware and software
I use this initramfs-based FDE on my headless server. My motivation is to secure my system against physical tampering.
I am aware that securing an untrusted hardware is not possible. This question is more about understanding how things wor… Continue reading Understanding FDE: Is the encrypted Linux protected against a compromised boot volume?