Stop Bots for Free with Cloudflare Turnstile in your Spring Boot App
My first Maven Central library: Free Cloudflare Turnstile integration for Spring Boot with zero CAPTCHA friction.
Security
23 posts
Solution for Docker Registry Error: certificate signed by unknown authority
Private Docker registries with self-signed SSL require special config - here's how to make Docker trust them.
MySQL.com Hacked and Infected
MySQL.com security breach exposes critical vulnerabilities in web infrastructure.
Spark::red is PCI Level 1 Certified!
Spark::red ATG Hosting achieves PCI DSS Level 1 certification, the industry's highest security standard.
Why you should be using a VPN
Wireless networks expose personal data constantly. A VPN encrypts traffic and protects privacy everywhere.
Interesting Phishing Technique
Slick phishing attempt promised revenue share while dodging basic credibility questions - how they hooked readers.
Spammers using a Thesaurus?
Spam bot ran English through a thesaurus to dodge filters - "beneficial perform" and "possess" exposed the trick.
SpamCop RBL is Blocking Several Facebook Mail Servers
SpamCop's RBL blocklist is flagging legitimate Facebook servers - if you use it, verify your allowlist.
DDOS Against 10MinuteMail
10MinuteMail faced a multi-country botnet DDOS attack - solved with firewall tuning instead of IP blocking.
Automated ClamAV Virus Scanning
Automate ClamAV virus scanning on Linux with cron and firewall tuning for continuous protection.
Looking for abusive clients in your web server logs
Find IPs hammering your web server with a single command: `cut -d ' ' -f 2 | sort | uniq -c | sort -nk 1`
Setting Up SPF, SenderId, Domain Keys, and DKIM
Secure your mail server against spam using SPF, SenderId, Domain Keys, and DKIM - four essential anti-spam authentication standards.
Monster.com Security Breach
Monster.com breach: user IDs, passwords, emails compromised. Change yours now.
Server Migration
Server migration complete - sites, apps, and email now live elsewhere. Report issues if you spot them.
AT&T DNS Cache Poisoning
AT&T DNS servers hit by cache poisoning attacks; vulnerable servers can poison others through trust chains - widespread problem.
Using IPTables to Prevent SSH Brute Force Attacks
Two iptables rules throttle brute-force SSH attacks: three tries, then a three-minute lockout that bots can't bypass.
Don't like people leeching your wireless?
Block wireless leeches? Get creative - upside-down internet redirects everything.
How to block an IP in Linux
Block malicious IPs in Linux with iptables - a simple script keeps brute-force attackers from hammering your server.
ATG Security
XSS and SQL injection are the web's deadliest threats - ATG Dynamo helps but doesn't solve the problem completely.
Lions and Tigers and Third-Party Javascript
Third-party JavaScript on your site hands browser control to strangers - the security risks range from theft to phishing attacks.
What's up with SMTPS?
SMTP remains unchanged since 1982, but modern email demands more - SMTPS finally brings security to this ancient protocol.
PGP E-mail Encryption conceptual issue
Email encryption needs mainstream adoption - major mail programs should ship PGP support by default.
FP!
New blog exploring technology insights from a Java and security architect's perspective.