Category Archives: Security

Secure an #nginx or #apache website using #ssllabs.com

From time to time is good to perform a security audit to your Internet exposed services. Things change fast online so you have to keep up with the security reports to be able to maintain secure services online. My favorite tool for SSL related security audit is the great resource at www.ssllabs.com. The audit performed… Read More »

Advertisements

Kaspersky Lab banned all across Europe #infosec

I am a long time evangelist of not using software that is linked to abusive governments. This applies sadly to a lot of software products and software environments linked to Russia and China. Regarding this, Kaspersky was one of my main “do not use” advice I was giving to people I know and to job… Read More »

Security: Generate certificates with keytool

The following is an example on how to generate a certificate directly on a Linux server using keytool, then sign it by a windows CA. The example assumes we are regenerating a certificate for a glasfish domain. STEP 1: Delete the old certificate In glasfish in each domain where security is activated we have a… Read More »

Security: Maintaining a secure WordPress blog

I already have several posts related to security of an exposed Internet site. They were all summarized in the post Blog Links: Web site security As we know, the Internet threats are constant and evolving so to maintain the same level of security we constantly have to update the configurations of a secure installation. In… Read More »

Blog Links: Web site security

I already had several posts related to constructing a secure website that can be released in the wild world-wide web. The following are several resources and links that will give a good idea on what one can do in order to secure a web site. First we need a way to analyse how secure our… Read More »