Posts categorized as 'Security'

Rate limiting with IPTables

This article explains how to rate limit using the recent module in IPTables.



Posted in Security_Tips   Security   Linux   IPTables     /   2022-07-19

Open-Source CMS’ and Software Bill of Material (SBOM) | NOC

Apache is a powerful web server and logging is a critical piece to managing a web server. In this article we explain the two log types: access and error, and how to work with them.



Posted in SBOM   Compliance   Security   Governance     /   2022-07-17

10 Steps to Securing SSH on a Linux Server

This article explains how to secure SSH on a linux server.



Posted in Security_Tips   Security   Linux   IPTables     /   2022-07-06

Commenting in IPTables

This article explains how to create comments in IPTable rules.



Posted in Security_Tips   Security   Linux   IPTables     /   2022-07-05

Default Blocks in IPTables

This article explains how to create Default Blocks in IPTable rules.



Posted in Security_Tips   Security   Linux   IPTables     /   2022-06-24

A Basic Linux Security Checklist

This article provides 8 steps to creating a secure Linux server.



Posted in Security_Tips   Security   Linux   IPTables     /   2022-06-24

Enable SFTP on Ubuntu Server

This article explains how to configure SFTP on a linux server.



Posted in Security_Configurations   Linux   Security     /   2022-06-23

Protect SSH with IP Authentication

This article explains how protect SSH using IP Authentication.



Posted in Product_Configuration   Feature   Security   SSH     /   2022-06-16

Working with UFW on Ubuntu

This article explains UFW and hows how to use it on Ubuntu.



Posted in Security_Configurations   Linux   Security   Ubuntu     /   2022-06-16

Install NMAP on Ubuntu

This article explains how to configure NMAP on a linux server.



Posted in Security_Configurations   Linux   Security   Ubuntu     /   2022-06-16

Responding to Security Incidents – Incident Response Plan Basics and Log4Shell

This articles provides a a basic framework that security teams can use to build an incident response plan.



Posted in Security   Governance   Program     /   2022-06-14

Log4Shell – Lessons Learned in 30 Days

This articles provides a PSA for the WordPress 5.8.3 security release.



Posted in Log4Shell   Vulnerability   PSA   WAF   Security     /   2022-06-14

NMAP – A Free Network Mapping Tool

This articles provides a PSA for the WordPress 5.8.3 security release.



Posted in Free   Security   Tools   NMAP     /   2022-06-13

WordPress 5.8.3 Security Release

This articles provides a PSA for the WordPress 5.8.3 security release.



Posted in PSA   WordPress   Security   WAF     /   2022-06-13

Cloud-based Web Application Firewalls (WAF) & The Log4J Vulnerability

This articles speaks to the effectiveness of WAF solutions in protecting against exploits targeting the Log4J vulnerability.



Posted in PSA   Log4J   Vulnerabilities   Security   WAF     /   2022-06-13

Active Exploits against CVE-2021-41773 (Apache Web Server Exploit)

This articles speaks to exploits against CVE-2021-41773. A vulnerability effecting Apache Web Server.



Posted in Vulnerabilities   Apache   PSA   Security   WAF     /   2022-06-13

The Most Effective Security Control for Open Source Admin Panels Never Used

This articles explains why it is important to block administrative panels on platforms like WordPress.



Posted in WordPress   Joomla   Access   Security   WAF     /   2022-06-13

WooCommerce Patches Two SQLi Vulnerabilities

This articles talks about two SQLi vulnerabilities in WooCommerce, patched in 2021.



Posted in Vulnerabilities   PSA   Security   WAF     /   2022-06-13

Securing WordPress in The Enterprise

This articles provides a guide on how to harden WordPress to keep hackers out of the website.



Posted in WordPress   Security   Enterprise     /   2022-06-10

WordPress Forced Updates vs Auto-Updates and Abusing User Defined Intent

This articles talks about forcing updates in the WordPress platform, and provides opinions on how that effects user defined intent.



Posted in WordPress   Security     /   2022-06-10

Arbitrary File Vulnerabilities And Why They Matter to Your Website

This articles explains Arbitrary File Upload Vulnerabilities and why they matter to the security of your website.



Posted in WAF   Vulnerabilities   Security     /   2022-06-10

The Domain Name System (DNS)

DNS stands for Domain Name System (DNS), you might hear it used interchangeably with Domain Name Server (DNS).. This article explains DNS, and how it works



Posted in Networking   DNS   Educational   Security   Features     /   2022-06-10

Automated Attacks Against WordPress Target Old Vulnerabilities

This article shows how attacks against WordPress are mostly automated.



Posted in Research   Security   WAF   WordPress     /   2022-06-10

The Importance of Asset Monitoring

This article explains why it's important to monitor assets like servers, websites and domains.



Posted in Networking   Performance   Monitoring   Educational   Security   Features     /   2022-06-09

The Affects of a CDN on your Websites Performance and Users Experience (and Google)

This article explains how CDN's can have a positive effect on the performance of a website.



Posted in Networking   Performance   Educational   Security   Products   Features     /   2022-06-08

Registries, Registrars and DNS

This aricle explains the differences between Registries, Registrars and DNS services.



Posted in Networking   Registry   Registrar   DNS   Educational   Security     /   2022-06-08

Autodetecting Network Failures and Self-Healing To Ensure Optimal Availability

This article explains how automating the detection of downtime can be crucial to an organization and DevSecOps team.



Posted in Networking   Performance   Educational   Security   Products   Features     /   2022-06-08

Using cURL to test the Performance of a Website

This article explains how cURL can be used to measure the performance of a website.



Posted in cURL   Performance   Educational   Security     /   2022-06-08

Using cURL to Test the NOC CDN Performance against Fastly, Sucuri and CloudFlare

This article explains how cURL can be used to compare performance against different CDN providers (e.g., NOC vs Sucuri, NOC vs CloudFlare).



Posted in cURL   Performance   Educational   Security     /   2022-06-08

Improve Your Websites Speed and Security