Tag
#Security
23 notes
Software Development 01
Stop Bots for Free with Cloudflare Turnstile in your Spring Boot App
My first Maven Central library: Free Cloudflare Turnstile integration for Spring Boot with zero CAPTCHA friction.
DevOps & Infrastructure 02
Solution for Docker Registry Error: certificate signed by unknown authority
Private Docker registries with self-signed SSL require special config - here's how to make Docker trust them.
DevOps & Infrastructure 03
MySQL.com Hacked and Infected
MySQL.com security breach exposes critical vulnerabilities in web infrastructure.
Career & Business 04
Spark::red is PCI Level 1 Certified!
Spark::red ATG Hosting achieves PCI DSS Level 1 certification, the industry's highest security standard.
DevOps & Infrastructure 05
Why you should be using a VPN
Wireless networks expose personal data constantly. A VPN encrypts traffic and protects privacy everywhere.
Tech & Gear 06
Interesting Phishing Technique
Slick phishing attempt promised revenue share while dodging basic credibility questions - how they hooked readers.
DevOps & Infrastructure 07
Spammers using a Thesaurus?
Spam bot ran English through a thesaurus to dodge filters - "beneficial perform" and "possess" exposed the trick.
DevOps & Infrastructure 08
SpamCop RBL is Blocking Several Facebook Mail Servers
SpamCop's RBL blocklist is flagging legitimate Facebook servers - if you use it, verify your allowlist.
10MinuteMail 09
DDOS Against 10MinuteMail
10MinuteMail faced a multi-country botnet DDOS attack - solved with firewall tuning instead of IP blocking.
DevOps & Infrastructure 10
Automated ClamAV Virus Scanning
Automate ClamAV virus scanning on Linux with cron and firewall tuning for continuous protection.
DevOps & Infrastructure 11
Looking for abusive clients in your web server logs
Find IPs hammering your web server with a single command: `cut -d ' ' -f 2 | sort | uniq -c | sort -nk 1`
Software Development 12
Setting Up SPF, SenderId, Domain Keys, and DKIM
Secure your mail server against spam using SPF, SenderId, Domain Keys, and DKIM - four essential anti-spam authentication standards.
DevOps & Infrastructure 13
Monster.com Security Breach
Monster.com breach: user IDs, passwords, emails compromised. Change yours now.
DevOps & Infrastructure 14
Server Migration
Server migration complete - sites, apps, and email now live elsewhere. Report issues if you spot them.
DevOps & Infrastructure 15
AT&T DNS Cache Poisoning
AT&T DNS servers hit by cache poisoning attacks; vulnerable servers can poison others through trust chains - widespread problem.
DevOps & Infrastructure 16
Using IPTables to Prevent SSH Brute Force Attacks
Two iptables rules throttle brute-force SSH attacks: three tries, then a three-minute lockout that bots can't bypass.
DevOps & Infrastructure 17
Don't like people leeching your wireless?
Block wireless leeches? Get creative - upside-down internet redirects everything.
DevOps & Infrastructure 18
How to block an IP in Linux
Block malicious IPs in Linux with iptables - a simple script keeps brute-force attackers from hammering your server.
Software Development 19
ATG Security
XSS and SQL injection are the web's deadliest threats - ATG Dynamo helps but doesn't solve the problem completely.
Software Development 20
Lions and Tigers and Third-Party Javascript
Third-party JavaScript on your site hands browser control to strangers - the security risks range from theft to phishing attacks.