Cloud Insidr

Cybersecurity in the Age of the Machine

  • Subscribe!
  • Privacy Policy
  • Legal
  • Contact Us

Join us on Twitter: @CloudInsidr

  • news & alerts
    • events
    • industry analysis
    • industry gossip
    • people
  • cloud, edge & co.
    • AWS
    • administration & orchestration
      • web servers in the cloud
      • mail servers
      • databases
  • cybersec & warfare
    • encryption
  • blockchain
Home Archives for cybersecurity and cyber warfare
How to Activate HTTP/2 with TLS 1.3 Encryption in NGINX for Secure Connections without a Performance Penalty

Filipe Martins 2023-01-31 Leave a Comment

How to Activate HTTP/2 with TLS 1.3 Encryption in NGINX for Secure Connections without a Performance Penalty

 

Are you ready for a better security with no performance penalty? Are you ready for a performance bump that can take you places in search engine land? In other words: now that HTTP/2 reached production-grade maturity, nothing should hold you back.

The IoT  revolution will make sure that only the paranoid survive.

[Read more…]

Filed Under: cloud, edge and everything in between, cybersecurity and cyber warfare, web servers in the cloud Tagged With: cipher suites, Diffie-Hellman, ECDHE, FLAME, HSTS, HTTP/2, NGINX, SHA-1, SHA-2, SSL, TLS

SELinux security contexts: correcting SELinux labels on a file system

Filipe Martins 2022-03-21 2 Comments

SELinux security contexts: correcting SELinux labels on a file system

SELinux can be such a nuisance. In particular, if you have a newly created file system, you will need to add labels to it, also known as SELinux security contexts.

[Read more…]

Filed Under: Linux, NGINX, SELinux, Uncategorized Tagged With: cyber security, SELinux

Log4j RCE and mitigation techniques

Cloud Insidr 2021-12-21 Leave a Comment

Log4j RCE and mitigation techniques

For quite some time it seemed as if cyber vulnerabilities in the Java ecosystem would be losing ground. Instead, it was the calm before the storm: a vulnerability in the Log4j library threatens web servers and other applications in a variety of ways.

[Read more…]

Filed Under: Java, Uncategorized Tagged With: Five Eyes Alliance, Java, Log4j, RCE

Fixing your Web Server’s Security Headers: From Hall of Shame to Hall of Fame

Cloud Insidr 2020-12-04 4 Comments

Fixing your Web Server’s Security Headers: From Hall of Shame to Hall of Fame

[Updated 2022-11-30] This post explains how to set up robust security headers in NGINX to protect your web application from malicious payloads and other forms of attacks. Choose your HTTP(S) headers wisely.

[Read more…]

Filed Under: cloud, edge and everything in between, cybersecurity and cyber warfare, encryption, NGINX, Uncategorized, web servers in the cloud Tagged With: clickjacking, CSRF, HPKP, HSTS, MITM, x509, XSS

Cannot sign in to AWS as IAM user with MFA? How to resync your MFA token generator

Cloud Insidr 2020-11-15 2 Comments

Cannot sign in to AWS as IAM user with MFA? How to resync your MFA token generator

Problems signing in to AWS? When the login page “Sign in as IAM user” repeatedly says: “Your authentication information is incorrect. Please try again” though you entered correct information, your Gemalto token generator for MFA authentication could be out of sync.

Sign in as IAM user: Your authentication information is incorrect
Sign in as IAM user: Your authentication information is incorrect

[Read more…]

Filed Under: AWS, cybersecurity and cyber warfare Tagged With: AWS, Gemalto, IAM, MFA

  • 1
  • 2
  • 3
  • …
  • 10
  • Next Page »

Subscribe

SSL/TLS Certificate Square (250 x 250)

Tag Cloud

AWS AWS Billing Dashboard AWS Config AWS Cost Explorer AWS EBS AWS Resource Explorer AWS Tag Editor AWS Trusted Advisor cipher suites cyber security Diffie-Hellman EBS EC2 ECDHE Five Eyes Alliance FLAME HSTS HTTP/2 Java Linux Log4j NGINX NVMe PHP RCE Route 53 SELinux SHA-1 SHA-2 SQL SSL TLS

Pearson Education (InformIT)

SSL/TLS Certificate Medium Rectangle (300 x 250)

©2022 CybrAnalytiqa OÜ

  • Content purchasing and syndication