When you implement a Websense proxy solution and you don’t guy one of their appliance then you have to setup the proxy components yourself. This can be fairly easily done on a CentOS install running on VMWare or Hyper-V. This how to will walk you through getting a Websense Content Gateway (otherwise known as a WCG) with version 8.0.1 on an appropriate virtual host.
After one of my recent tutorials about a host to host Linux VPN this post is a how to create a host to host VPN between Windows 2012 and Ubuntu 14.04. We’ll be using the inbuilt Windows Firewall with Advanced Security and Strongswan.
A lot like my last tutorial I couldn’t find any decent information out there how to get an IPSec connection between Microsoft and Linux, but since IPSec is an open standard I was confident it should work. After spending a lot of time working through how to do this I decided to write this post to hopefully help other people out in the same situation.
[email protected]:~$ apt-get update E: Could not open lock file /var/lib/apt/lists/lock - open (13: Permission denied) E: Unable to lock directory /var/lib/apt/lists/ E: Could not open lock file /var/lib/dpkg/lock - open (13: Permission denied) E: Unable to lock the administration directory (/var/lib/dpkg/), are you root? [email protected]:~$ alias flipping=sudo [email protected]:~$ flipping apt-get update [...] Fetched 3,214 kB in 2s (1,167 kB/s) Reading package lists... Done [email protected]:~$ unalias flipping [email protected]:~$ :)
And who says swearing at computers isn’t fun…
After having looked after a number of WordPress websites over the last 7 years or so it has become apparent that the number of brute force attacks specifically targeting WordPress is increasing. I know it isn’t a matter of if one of these attacks succeeded but when. This tutorial won’t completely get rid of all brute force attacks, but it should reduce them quite a lot.
As a totally unscientific observation I was going from around 10,000 attempted logons a day, to only a couple of dozens actually getting as far as authenticating. All this without inconveniencing either myself or my customers!