Category Archives: IT-Security

Create ssh keys with puppet on a server + pubkey exchange

There are a few solutions to generate ssh keys on a puppet master/server or copy them from hiera to a box. I have got several boxes and every box needs to have ssh access to every other box. I don’t … Continue reading

Posted in General, IT-Security, Linux, Puppet | 1 Comment

Let’s Encrypt automation – The awesome way

Free SSL for the mass \o/ Cryptography is important. I like to encrypt as much traffic and data as possible, not only the important stuff. Let’s Encrypt is a new project sponsored by multiple big companies and the Linux Foundation … Continue reading

Posted in 30in30, General, Internet found pieces, IT-Security, Linux | Leave a comment

32C3 Review Part 1

I visited the 32C3, the annual Hacker conference organized by the CCC and many many volunteers. Here is the first part of a short list of recommended videos (Day 1 of 4): Part1 – annual must-see talks: The Opening is … Continue reading

Posted in General, Internet found pieces, IT-Security, Linux, Nerd Stuff | Leave a comment

Securing Postfix on a shared Webserver

I’m operating a webserver for shared webspace accounts. I’m not responsible for the stuff hosted on the webspace, but for the server itself. Many people like to host their wordpress or joomla on this server, both scripts are well known … Continue reading

Posted in General, IT-Security, Linux, Short Tips | Leave a comment

Fighting PHP spam

A good friend owns a very old joomla website which has been hacked. It is massively sending spam, how can we investigate this? First of all, reject outgoing mails in your firewall (ferm.conf style): Now we have time to investigate. … Continue reading

Posted in General, IT-Security, Linux, Short Tips | Leave a comment

Why the internet sucks part 2

[Here is part 1] The Internet is split up into three different provider types. The first type are the access provider. They provide you with DSL access via old copper based phone lines or with access to their shared TV-cable. … Continue reading

Posted in 30in30, General, IT-Security | 1 Comment

Link collection of the (last) week(s)

Some interesting and important happenings and things I found in the past week (and prior): Differences between shell types + their workflow Puppet 4.3 got released! 2.2.5 New Nmap! after 3.5 years of development Commitmas is comming! (still thinking about … Continue reading

Posted in 30in30, General, Internet found pieces, IT-Security, Linux, Puppet | Leave a comment

Preparing Puppet Workshops

I’m currently planning a puppet workshop for my colleagues to introduce them into the world of puppet and code driven infrastructure. Here is my current agenda: Why do I want configuration mangement, why do I want puppet? puppet (Configuration Management) … Continue reading

Posted in 30in30, General, Internet found pieces, IT-Security, Linux, Puppet | 1 Comment

Making surfing a bit more secure

The internet is a dangerous place, people are trying to get your private data to sell it, track you across many sites, provide insecure connections so also third parties can get your data our they embed strange ads that try … Continue reading

Posted in 30in30, General, IT-Security | Leave a comment

(not really) weekly link collection

Not Even Close: The State of Computer Security (with slides) – James Mickens from NDC Conferences on Vimeo. Create Puppet modules with solid foundations How to Use Puppet right The CAP Theorem (only Wikipedia) Serving Dovecot mailbox quota status to … Continue reading

Posted in 30in30, General, Internet found pieces, IT-Security, Linux, Nerd Stuff, Puppet | 1 Comment