Cloud Insidr

Cybersecurity in the Age of the Machine

  • Subscribe!
  • Privacy Policy
  • Legal
  • Contact Us

Join us on Twitter: @CloudInsidr

  • news & alerts
    • events
    • industry analysis
    • industry gossip
    • people
  • cloud, edge & co.
    • AWS
    • administration & orchestration
      • web servers in the cloud
      • mail servers
      • databases
  • cybersec & warfare
    • encryption
  • blockchain
Home Archives for cyber security
Correcting SELinux security contexts: how to adjust SELinux labels on your file system

Filipe Martins 2020-12-06 5 Comments

Correcting SELinux security contexts: how to adjust SELinux labels on your file system

In an administrator’s quest to get stuff done, SELinux tends to get in the way. It is being perceived as a nuisance rather than a feature and this happens mostly for only one reason: setting correct SELinux labels requires the ability to figure out the appropriate SELinux security contexts. Here is how to do it.

[Read more…]

Filed Under: SELinux, Uncategorized Tagged With: cyber security, SELinux

How to install the most recent version of OpenSSL on Windows 10 in 64 Bit

Cloud Insidr 2018-06-02 25 Comments

How to install the most recent version of OpenSSL on Windows 10 in 64 Bit

In the age of cyber warfare, being paranoid is the only reasonable attitude and that means, among other things, being paranoid about software updates.

[Read more…]

Filed Under: administration and orchestration, cloud, edge and everything in between, cybersecurity and cyber warfare, encryption, web servers in the cloud Tagged With: cyber security, Linux, OpenSSL, Windows

A fatal flaw in TCP on Linux hijacks HTTPS connections. Here is the fix

Cloud Insidr 2016-08-12 Leave a Comment

A fatal flaw in TCP on Linux hijacks HTTPS connections. Here is the fix

If you are running Linux kernel 3.6 or newer, anyone in the world on a network that allows IP spoofing can hijack your encrypted communications in less than a minute, with a success rate of 90%.

Here is how to fix it.

[Read more…]

Filed Under: alerts, cloud, edge and everything in between, cybersecurity and cyber warfare, encryption, Linux Tagged With: cyber security, Linux, TCP

Apple and Seagate Hacked

Cloud Insidr 2016-03-07 4 Comments

Apple and Seagate Hacked

Over the years, Apple has dismissed some of their best technical talent. Today, it came back to bite them: the legendary electronic maker had to admit that they got hacked big-time, joining Seagate in this predicament. It made news all over the airwaves.

[Read more…]

Filed Under: cloud, edge and everything in between, cybersecurity and cyber warfare, encryption, industry gossip, news, web servers in the cloud Tagged With: Apple, breach, Closing Bell, CNBC, cy, cyber security, hack, Seagate

How to Create a Content Security Policy to Protect Your Web Application against XSRF/CSRF/XFS, Clickjacking and Other Code Injection Attacks

Filipe Martins 2016-02-22 3 Comments

How to Create a Content Security Policy to Protect Your Web Application against XSRF/CSRF/XFS, Clickjacking and Other Code Injection Attacks

[Updated 2019-03-17] Are you wondering why some JavaScript code from external domains simply won’t execute on your website? The reason could be as simple as an overly restrictive Content Security Policy (CSP for short). This article explains how you can create a Content Security Policy that’s both protective and functional. It will help you to secure your web server from some types of cross-site request forgery (XSRF/CSRF/XFS), clickjacking and other code injection attacks.

[Read more…]

Filed Under: administration and orchestration, cloud, edge and everything in between, cybersecurity and cyber warfare, encryption, Uncategorized, web servers in the cloud Tagged With: CSP, cyber defense, cyber security, cybersecurity, NGINX

Join Cloud Insidrs!

Symantec Code Signing (200x200)

Tag Cloud

automation AWS Azure Azure Active Directory Azure Arc Azure Lighthouse Azure Resource Manager certbot certificate clickjacking cron CSRF cyber security DD-WRT DNS over HTTPS DoH domain firmware Gemalto HPKP HSTS IAM letsencrypt log logs MFA MITM Netgear network router SELinux time stamp tip Whois WiFi x509 XSS
Secure Site with EV (160x600)

Pearson Education (InformIT)

Pearson Education (Peachpit)

Thawte Code Signing (200x200)

  • Content purchasing and syndication