Cloud Insidr

Cybersecurity in the Age of the Machine

  • Subscribe!
  • Privacy Policy
  • Legal
  • Contact Us

Join us on Twitter: @CloudInsidr

  • news & alerts
    • events
    • industry analysis
    • industry gossip
    • people
  • cloud, edge & co.
    • AWS
    • administration & orchestration
      • web servers in the cloud
      • mail servers
      • databases
  • cybersec & warfare
    • encryption
  • blockchain
Home Archives for cybersecurity and cyber warfare
Juniper Networks’ Embarrassment Lives On in Its Flawed SSL Configuration

Cloud Insidr 2016-01-10 Leave a Comment

Juniper Networks’ Embarrassment Lives On in Its Flawed SSL Configuration

Recent revelations from the maker of networking gear Juniper Networks have shaken the industry: Juniper has identified unauthorized code in ScreenOS, its operating system that powers the NetScreen line of Juniper firewalls. Then last Friday, cryptography researchers revealed that Juniper has allowed changes to its code that could enable eavesdropping on encrypted virtual private network sessions of its customers.

Juniper Networks headquarters
Juniper Networks headquarters (provided directly by Juniper Networks under the Creative Commons Attribution-Share Alike 3.0 Unported License)

[Read more…]

Filed Under: cloud, edge and everything in between, cybersecurity and cyber warfare, industry gossip, news Tagged With: backdoor, firewall, password, SSH, SSL

Troubleshooting PHP 7 and NGINX when using TCP sockets with SELinux on Fedora/RHEL/CentOS

Anna E Kobylinska 2016-01-08 12 Comments

Troubleshooting PHP 7 and NGINX when using TCP sockets with SELinux on Fedora/RHEL/CentOS

If you are having trouble getting your web server to work or starting services on the system, SELinux could be at fault.

[Read more…]

Filed Under: administration and orchestration, cloud, edge and everything in between, cybersecurity and cyber warfare, web servers in the cloud Tagged With: PHP 7, php-fpm, SELinux, TCP socket

In IT to “Support and Defend”: Why Cybersecurity Is a Battlefield and Microsegmentation is Your Friend

Cloud Insidr 2015-12-29 Leave a Comment

In IT to “Support and Defend”: Why Cybersecurity Is a Battlefield and Microsegmentation is Your Friend

The traditional perimeter-focused security model has outlived its active usefulness as evidenced by the never-ending array of security breaches that constantly push the envelope on our tolerance for administrative “malpractice” in IT.

From the various security breaches in the private sector that are by now too plentiful to enumerate, through the fingerprint-stained OPM disaster, to the recently leaked database of personally identifiable information on over 191 million registered voters (in other words: all of them): no vulnerability seems too obscure, no exploit too impractical, no hack too audacious for some keyboard-toting mercenary to take advantage of the collective naiveté–or is it sheer incompetence?–of those who are paid to protect and defend access to sensitive information. How in the world did these people get their jobs, how dare they draw a salary, and how can they sleep at night? And, even more importantly: are you, by any chance, one of them?

[Read more…]

Filed Under: cybersecurity and cyber warfare Tagged With: cybersecurity, cyberwarfare

Locked out of WordPress? How to Reset Your User Password to the Admin Backend in MySQL or MariaDB

Anna E Kobylinska 2015-12-28 7 Comments

Locked out of WordPress? How to Reset Your User Password to the Admin Backend in MySQL or MariaDB

Have you locked yourself out of WordPress due to some upgrade or restore mishap in combination with the lack of a valid email address to restore it to? Welcome to the Club of lucky administrators! There is a solution to this particular problem that just begs to be shouted from the rooftops: why don’t you reset your WordPress password using MySQL (or MariaDB). Let’s get right to it.

[Read more…]

Filed Under: cloud, edge and everything in between, cybersecurity and cyber warfare, web servers in the cloud Tagged With: MariaDB, MySQL, SSH, WordPress

How to set up an SSH connection using authentication based on private-public key pairs

Anna E Kobylinska 2015-12-21 Leave a Comment

How to set up an SSH connection using authentication based on private-public key pairs

In order to transfer files from one server to another you can use Unix tools such as rsync with key pairs. Setting up the connection is rather easy once you know how to do it.

How keys work in public key cryptography

Public key cryptography relies on the use of a key pair that consists of a private and a public key. These two text strings can be compared against one another using a cryptographic algorithm. If the verification succeeds, access is granted.

Think of the public key as the lock on a door. It is technically available to everyone, but can only be opened with the corresponding private key.

In public key cryptography, your private key is like the master key of an apartment house in the real world: it can open all the locks on any door anywhere (for one and only private key, it is possible to generate many public keys).

https://www.cloudinsidr.com/content/wp-content/uploads/2015/12/How_a_key_works.mp4

Public key cryptography relies on an analogy to a lock and a key in the real world; animation by — Vala Afshar (@ValaAfshar) via Twitter

In order for the origin host (ec-instance-01) to be able to connect to the target host (ec-instance-02), you need to follow these steps:

  • create a key pair in the .ssh directory on the origin host (the one that will be initiating the connection); the private key of this key pair should never leave this host!
  • append only(!) the public key from this pair to the authorized_keys file of your user on the destination host.

Here is how to do this in more detail.

[Read more…]

Filed Under: administration and orchestration, cloud, edge and everything in between, cybersecurity and cyber warfare Tagged With: authorized_keys, ECDSA, ED25519, RSA, SSH

  • « Previous Page
  • 1
  • …
  • 6
  • 7
  • 8
  • 9
  • 10
  • Next Page »

Subscribe

Find the monitor that's right for you.

SSL/TLS Certificate Square (250 x 250)

Tag Cloud

AWS AWS Billing Dashboard AWS Config AWS Cost Explorer AWS EBS AWS Resource Explorer AWS Tag Editor AWS Trusted Advisor cipher suites cyber security Diffie-Hellman EBS EC2 ECDHE Five Eyes Alliance FLAME HSTS HTTP/2 Java Linux Log4j NGINX NVMe PHP RCE Route 53 SELinux SHA-1 SHA-2 SQL SSL TLS

Pearson Education (InformIT)

SSL/TLS Certificate Medium Rectangle (300 x 250)

©2022 CybrAnalytiqa OÜ

  • Content purchasing and syndication