Collaborate Disseminate
Last time, I gave a whirlwind introduction to a very small slice of systemd. If you aren’t comfortable with systemd services, timers, and mounts, you might want to read that …read more Continue reading Linux Fu: Stupid Systemd Tricks
I will confess. I started writing this post about some stupid systemd tricks. However, I wanted to explain a little about systemd first, and that wound up being longer than …read more Continue reading Linux Fu: Getting Started with Systemd
As computing power increases with each new iteration of processors, actual power consumption tends to increase as well. All that waste heat has to go somewhere, and while plenty of …read more Continue reading Upgrading PC Cooling With Software
I’m looking into hardening an embedded device using TPM2 with an encrypted root (/) Linux partition. I’ve found various articles explaining how to embed LUKS keys into the TPM (eg this one). Unless otherwise informed, I assume this can be… Continue reading How does a TPM module protect keys LUKS keys on Linux
I’m currently securing a Linode VPS that will host a WordPress store and two Python web applications. Security-wise, I’ve run the most "basic" steps, such as hardening SSH access (i.e. disabling password & root login), settin… Continue reading Which of the following Linys auditing suggestions are worthwhile?
The page at: https://www.freedesktop.org/software/systemd/man/systemd.exec.html#Environment says:
Environment variables set for a unit are exposed to unprivileged clients via D-Bus IPC […]
I don’t have much experience with stuff as low… Continue reading Details: snoop environment variables using D-Bus IPC
This may be comparing chalk with cheese, but I’m wondering how these tools compare: pros and cons, similarities and differences, and situations where you would use one vs the other.
Continue reading How do AppArmor and systemd access controls compare?
The latest version of Arkime (The Sniffer Formerly Known As Moloch) can now be fed with a real-time stream of decrypted HTTPS traffic from PolarProxy. All that is needed to enable this feature is to include ‘pcapReadMethod=pcap-over-ip-server’ in Arkim… Continue reading Capturing Decrypted TLS Traffic with Arkime
Linux has changed. Originally inspired by Unix, there were certain well understood but not well enforced rules that everyone understood. Programs did small things and used pipes to communicate. X Windows servers didn’t always run on your local machine. Nothing in /usr contributed to booting up the system.
These days, …read more
If you have a toddler and a mini-tramp you know the rallying cry of “Mama, Count!”. If you don’t don’t have either of these things, become the hero uncle or aunt by building one for your family members who have been social distancing with a three-year-old monster bundle of joy …read more
Continue reading Trampoline Bounce Counter Has Raspberry Pi Automate Away Your Parental Duties