Collaborate Disseminate
I wanted to secure my apps running in a private subnet with SSL. Albeit not necessary, it is very nice to have.
Because of my constant changes, I opted for a wildcard ssl certificate through my DNS provider Cloudflare by providing Nginx Pr… Continue reading How did I obtain a wildcard SSL certificate without port 80 opened for a challenge?
Consider a situation such as:
private LAN <-> firewall A <-> DMZ <-> firewall B <-> internet
(https://forum.huawei.com/enterprise/en/dmz-and-reverse-proxy/thread/682001870249410560-667213854934970368)
For a website … Continue reading LAN and external website [closed]
I’m trying to understand where TLS is required. I’ve heard that TLS encrypts data when a client communicates with a server through HTTP by verifying the server and passing encryption keys. This protection is done through a TLS certificate signed by a CA (Certificate Authority). I can imagine a hacker trying to claim who they are while communicating through the web.
But will this apply to a LAN system? For example, in Hashicorp’s Vault, they mentioned: “End-to-End TLS. Vault should always be used with TLS in production.”. If system A (say Vault) tries to communicate with system B (say Backend Service) connected through LAN how can the systems be verified through a CA? (or perhaps the question should be, does it need one?)
The image below helps illustrate the question I’m facing.
Reference:
https://www.cloudflare.com/learning/ssl/what-is-ssl/
What’s the point of certificates in SSL/TLS?
https://developer.hashicorp.com/vault/tutorials/operations/production-hardening
Como puedo mejorar la seguridad de mi red LAN en la empresa
Continue reading Como puedo mejorar la seguridad de mi red local
I noticed some strange behaviour on my firewall WAN interface last night, and then later on my LAN interface as well.
There seems to be traffic to a known tor node 192.99.168.180 on port 123. I block all tor by default on my network, and I… Continue reading Traffic to Tor node NTP port [closed]
I was reading this security advise, which says:
The neovim process binds itself to 127.0.0.1, so malicious actors on your LAN should be unable to interact with either your webextension or your neovim process.
There is a typo there, as &q… Continue reading Malicious actors on LAN
I have a LAN. Is there a way, without installing any agent in each computer, to detect if any computer is accessing the internet without going through the LAN? For instance, via dongle, Wifi hotspot?
Continue reading How can I detect secondary internet connections?
If you want to block NTLM attacks over SMB in Windows 11, here is how you can do that. An administrator can block all the NTLM attacks over Server Message Block with the help of the Local Group Policy Editor and Windows PowerShell. If you are a system … Continue reading Block NTLM attacks over SMB in Windows 11 using GPEDIT or PowerShell
This post will show how to make your Windows computer automatically detect LAN Settings. Configuring LAN settings is essential for ensuring seamless network connectivity. Doing so ensures that your devices effortlessly communicate with the network, opt… Continue reading Automatically detect LAN Settings in Windows 11/10
Suppose a wifi router has strong admin password, updated firmware and no vulnurability then –
Is the router safe from malware infection from android phones connected to it?
Can malware from an infected android phone transmit infection to … Continue reading Malware infection to wifi router from android phone