CloudInsidr

Cyber security, infotech

Join us on Twitter: @CloudInsidr

Home Home
How to verify the remaining validity of your letsencrypt certificates

Leave a Comment

How to verify the remaining validity of your letsencrypt certificates

In order to figure out how many days your letsencrypt certificates have left, you could check an online services such as:

https://www.ssllabs.com/ssltest/index.html

However, that won’t work for a mail server that’s not also running a web server using the same certificate.

In this case, your best bet is to check the certificate file directly using the openssl command as follows:

openssl x509 -noout -dates -in /etc/letsencrypt/live/smtp.yourmailserverdomainname.com/cert.pem
Maximize your PHP session security by fixing errors and closing the session adoption vulnerability that allows session fixation attacks

Leave a Comment

Maximize your PHP session security by fixing errors and closing the session adoption vulnerability that allows session fixation attacks

When the server can’t write to the session data directory, if will use /var/cache/nginx/fastcgi_temp/ and complain in the error log. You don’t want any of these errors, but a setting considered insecure will not even be reported as such. Here is how to bolster your PHP 7 session security with NGINX and php-fpm.

[Read more…]

IBM’s China connection and the betrayal of America: how Chinese government hackers manage to remain undetectable

Leave a Comment

IBM’s China connection and the betrayal of America: how Chinese government hackers manage to remain undetectable

You know, if you have something really important, write it out and have it delivered by courier, the old-fashioned way. Because I’ll tell you what: No computer is safe (…) I don’t care what they say.

President-Elect Donald Trump

 

In the waning days of the fading Obama presidency, plenty of questions surfaced about Russia’s involvement with the hacks of the DNC and election systems. Electronic evidence can be easily manipulated.

There is more to it than just electronic evidence.

[Read more…]

How to create OpenSSH keys on a Windows desktop for remote access to a Linux server with PuTTY Key Generator

Leave a Comment

How to create OpenSSH keys on a Windows desktop for remote access to a Linux server with PuTTY Key Generator

When using authentication based on keys (as opposed to a password), you have to create the key pair—a private key and a public key—on your local machine, then transfer the public key to the server and install it there. Here is how to do this on a Windows desktop for remote access to a Linux server.

[Read more…]

©2022 CybrAnalytiqa OÜ