security

  • 4th February 2023

Yubico Authenticator on RHEL 9

How to install Yubico Authenticator app on RHEL 9

Read more 
  • 1st February 2023

Git hosting and ed25519-sk

Little feedback about hardening git requiring your physical security key (Yubikey & co) using ed25519-sk.

Read more 
  • 14th November 2022
  • 10th June 2022

Azure App Services Web Apps Configuration - Versioning

Azure App Services Web Apps Configuraton, external versioning solution… KISS way

Read more 
  • 27th January 2022

Azure - Set expiration on all secrets

When enforcing policy on Key Vault, we need to set expiration on secret. This is the quick way to do it

Read more 
  • 13th January 2022

Fix Azure WAF & AD OpenID Connect

Azure WAF custom rule to allow Active Directory OpenID Connect

Read more 
  • 5th September 2021

Podman on macOS

Containers on macOS with Podman

Read more 
  • 23rd March 2021

NET NEUTRALITY - Bitel: Drop DNS Bypassed

Bitel drops DNS traffic to other servers than their owns. This is the way to to bypass this attack on net neutrality and security.

Read more 
  • 7th June 2020

Why do you must use server-side sessions?

Do you respect your users? Do you want the best security for them? In that case, you must use server-side sessions.

Read more 
  • 15th April 2020

Why Not Using Vault Upstream?

I explain why I don't use Vault from upstream for dev/pre-prod/prod environment. It's about security.

Read more 
  • 26th January 2020

Nginx: TLS without LUCKY13

My public TLS configuration for nginx and I hardened a little: removing a lot of ciphers and LUCKY13 vuln. Now, you've a true TLS config for your nginx.

Read more 
  • 4th January 2020

How to force CloudFlare WAF: mTLS

We'll see how it's possible to do mutual TLS (mTLS) with nginx and force your users to pass through CloudFlare WAF and reject all direct connections.

Read more 
  • 24th December 2019
  • 20th November 2019

No unauthorized access to WordPress Admin

How to prevent your WordPress to be hacked, having unauthorized access to your admin panel?

Read more