Collaborate Disseminate
I am setting up a Privileged Access Workstation (PAW) to access a whitelist of websites. Currently I have been following this guide on Github by unassassinable and applying the latest Windows 10 security baselines.
Is there any documenta… Continue reading Setup guide for Privileged Access Workstation on Windows 10
After the second hack, we did all the necessary things written here – https://wordpress.org/support/article/hardening-wordpress/ , https://security.stackexchange.com/a/180925 and we also changed the file permission (wp-config.php to 400). … Continue reading My WP site just got hacked for the third time even after following WP hardening guidelines
I was working with one of my systems and set it to isolate users and their processes. For example:
[user@server] $ ps aux
shows only processes started by that user, not every process on the system.
[root@server] # ps aux
shows every… Continue reading How do I Isolate users and their processes on linux [migrated]
Could anyone tell me which kind of linux-os is the most safe?
I use many of them, but I am still not sure which one is best about safety. Ubuntu does not look very safe to me. Fedora looks better. Tails looks good.
Which one is best in s… Continue reading Which flavor of linux is the safest? [closed]
Software libraries targetting resource constrained environments like embedded systems use conditional compilation to allow consumers to shave space and thus increase performance by removing unused features from the final binaries distribut… Continue reading Does removing features from a library increase or reduce security risks?
this is the second of a series of questions on hardening Linux servers at the filesystem level. The first is here. The same scenario applies; I copy it here for convenience:
At work I’m hardening an Ubuntu 18.04 Server installation follow… Continue reading Secure partitioning: does LVM affect hardening guidelines?
Virtualisation can do reasonably secure nonpersistent drives. Would rather not rely on this alone but also have a host that is nonpersistent too. A live DVD as a host leaves no traces and is physically impossible to permanently infect/own … Continue reading Most secure linux equivalent to Shadow Defender for live CD-like nonpersistency with no traces left (or traces that are encrypted)
I have newly bought HP Pavilion laptop, which i am planning to nuke and reinstall.
I really do not like the bloatware as it might posses a security risk.
However, in Thailand, i do not trust the sellers of USB sticks and external hard d… Continue reading How to safely reinstall Windows in Thailand – avoiding BadUSB/SSD
I’ve recently bought a new HP Pavilion laptop, it came with pre-installed software (bloatware) such as various games and other useless stuff.
When setting up the laptop, i was connected to AIS, which is Thailand foreigner mobile network.
… Continue reading Newly bought HP Pavilion laptop – bloatware – security risks [duplicate]
The goal of this process is providing more security to the cloud infrastructure, but in the process of hardening, sometimes there are some items in the checklists that can put the availability of our system in jeopardy.
A … Continue reading The best method for cloud infrastructure hardening [closed]