With Docker vulnerabilities in the news of late, it makes sense to have a look at hardening your deployments, especially any that are exposed to the Internet.Doomsday Docker security hole article on

The Center for Internet Security has free guides that will help you secure your systems. A typical corporate environment may have a broad array of systems, including routers, switches, and firewalls from vendors

I like to have a banner display at login to my servers when I use Secure Shell (SSH) to access them. Once upon a time, this was done by putting a static message

I was checking the security logs on one of my servers as I often do and noticed attempts to log into SSH using a curious username. My servers are all set up to

If you've just started using Linux, or haven't yet, but want to, this article may help. It points you to some books, online learning courses, and videos available for free! It will help

I've created a free 7 part video tutorial on how to set up key based authentication for Linux. You'll learn how to: Install OpenSSH Server on your Ubuntu 16.04 LTS server Connect

Here are a few resources that will greatly help you in securing your operating system(s) and network for free! STIG Viewer Unified Compliance Framework's (UCF's) Security Technical Implementation Guides (STIG's) provide a

Do you want to learn to hack and thereby how to defend web sites? Try the SANS Holiday Hack Challenge. Shout out to Jeff V. (@mrvaughan) for the tweet about this!

If you're not familiar with edX, they have many informative and interesting free online courses. I came across one that really impresses me, and I'm sharing it with you! I'm providing the link

Howdy readers, I apologize, but the blog was down for about 5 days. I had two things going on, and it took me some time to resolve them. The good news is, the

Disqus, recommended by Ghost and used by many, including this blog, hacked Disqus, a provider of comment features for many blogs, including this one, has announced a hack. Information on people who used

Millions upon millions of accounts are compromised every year. It is very likely that the account for some web site or online service you use has been exposed by an attack. How can

I just came across this article by Ziemowit Pierzycki about how he was scammed out of $1,500 for a camera lens he bought on Amazon. He seems to present clear evidence that

I recently suffered a little down time on my site due to my letsencrypt certificate expiring and having some difficulty renewing because I'm using CloudFlare's Content Delivery Network in front of my site.

It's here! Ghost Publishing Platform Version 1.0. On 27 July, 2017, John O'Nolan announced the release of Ghost Version 1.0. For those of you who haven't heard of Ghost, it is

Offensive Security announced a new, free Kali Linux Certified Professional Course and Certification Have you been looking to learn how to Penetration Test? Muts and crew have announced a new, free course and

Brian Krebs breaks story that Avanti, a self-service food kiosk vendor, was hacked. Avanti Markets, a vendor with "micro markets" in many corporate offices throughout the United States, has had a

One of my esteemed colleagues was familiar with the popular open source web application scanning tools, Nikto, but was unaware of the origin of the name. As I mentioned, Nikto is a popular

In case you weren't aware of it, your computer can become infected with malware by visiting an infected site, even if you don't click on anything upon hitting the site. It is called