IPSec VPN Host to Host on Windows 2012 R2 and Ubuntu 14.04


After one of my recent tutorials about a host to host Linux VPN this post is a how to create a host to host VPN between Windows 2012 and Ubuntu 14.04.  We’ll be using the inbuilt Windows Firewall with Advanced Security and Strongswan.

A lot like my last tutorial I couldn’t find any decent information out there how to get an IPSec connection between Microsoft and Linux, but since IPSec is an open standard I was confident it should work. After spending a lot of time working through how to do this I decided to write this post to hopefully help other people out in the same situation.

Continue reading →

An Immature Way to Use Sudo

Control versus Escape
gyp@server12:~$ apt-get update
E: Could not open lock file /var/lib/apt/lists/lock - open (13: Permission denied)
E: Unable to lock directory /var/lib/apt/lists/
E: Could not open lock file /var/lib/dpkg/lock - open (13: Permission denied)
E: Unable to lock the administration directory (/var/lib/dpkg/), are you root?
gyp@server12:~$ alias flipping=sudo
gyp@server12:~$ flipping apt-get update
Fetched 3,214 kB in 2s (1,167 kB/s)
Reading package lists... Done
gyp@server12:~$ unalias flipping
gyp@server12:~$ :)

And who says swearing at computers isn’t fun…

Securing WordPress from Brute Force Attacks by Country Blocking on Nginx


After having looked after a number of WordPress websites over the last 7 years or so it has become apparent that the number of brute force attacks specifically targeting WordPress is increasing. I know it isn’t a matter of if one of these attacks succeeded but when. This tutorial won’t completely get rid of all brute force attacks, but it should reduce them quite a lot.

As a totally unscientific observation I was going from around 10,000 attempted logons a day, to only a couple of dozens actually getting as far as authenticating.  All this without inconveniencing either myself or my customers!

Continue reading →

Installing LEMP on Ubuntu 14.04 with Nginx and NAXSI


Well, after my last tutorial about getting a LEMP server on Ubuntu 11.10 I’m very happy to announce that the process is now a heck of a lot easier on 14.04! As a matter of fact you don’t need to create your own startup scripts for the services anymore which is nice.

Continue reading →

IPSec VPN Host to Host on Ubuntu 14.04 with strongSwan


After spending a crazy amount of time trying to find something up to date regarding network security and host to host VPN I decided to write something which will hopefully be useful to other people in the same situation.

Setting up a host to host IPSec connection between two or more hosts running Ubuntu isn’t always a simple process. We want encryption to protect all the communication between two hosts and for this tutorial we will be using what I feel to be the simplest method of using Pre-shared Keys (PSK).

Continue reading →