All posts tagged security

How to Create a Websense Content Gateway (WCG) on CentOS

websense-logo

When you implement a Websense proxy solution and you don’t guy one of their appliance then you have to setup the proxy components yourself.  This can be fairly easily done on a CentOS install running on VMWare or Hyper-V.  This how to will walk you through getting a Websense Content Gateway (otherwise known as a WCG) with version 8.0.1 on an appropriate virtual host.

Continue reading →

IPSec VPN Host to Host on Windows 2012 R2 and Ubuntu 14.04

window-with-blue-light

After one of my recent tutorials about a host to host Linux VPN this post is a how to create a host to host VPN between Windows 2012 and Ubuntu 14.04.  We’ll be using the inbuilt Windows Firewall with Advanced Security and Strongswan.

A lot like my last tutorial I couldn’t find any decent information out there how to get an IPSec connection between Microsoft and Linux, but since IPSec is an open standard I was confident it should work. After spending a lot of time working through how to do this I decided to write this post to hopefully help other people out in the same situation.

Continue reading →

Securing WordPress from Brute Force Attacks by Country Blocking on Nginx

cctv-camera

After having looked after a number of WordPress websites over the last 7 years or so it has become apparent that the number of brute force attacks specifically targeting WordPress is increasing. I know it isn’t a matter of if one of these attacks succeeded but when. This tutorial won’t completely get rid of all brute force attacks, but it should reduce them quite a lot.

As a totally unscientific observation I was going from around 10,000 attempted logons a day, to only a couple of dozens actually getting as far as authenticating.  All this without inconveniencing either myself or my customers!

Continue reading →

Blocking Countries on Nginx without the GeoIP Module

the-world-in-flags

Sometimes blocking entire swathes of the world is the way to go if you truly want a defense in depth approach on your web apps, for instance do your administrators truly need to log on from every country on Earth? As website administrators we get a feel for where our legitimate traffic is coming from and where we see nefarious connections from.

Continue reading →

ISC(2) CISSP Revision Notes – Study and Exam Tips

notes-study-and-exam-tips

I’ve recently sat my CISSP exam and passed!  Very happy with the result, now all I need to do is sort out the paper work.  I present here some tips I learnt while studying for the CISSP, and present some observations from the exam.  I often liken the courses I do to an academic level, for those who know I’d class the CISSP as 60 points at a Post Graduate level.

Continue reading →