OpenSSL Heartbeat, a.k.a. Heartblead Bug

Posted by ajt on Tue 8 Apr 2014 at 22:24
Tags: , , , ,

A serious security flaw has come to light in the OpenSSL package used in many Linux distributions including Debian. It is considered very serious and all administrators should patch their systems at once and restart any services that rely on OpenSSL.

( Read 88 more words ~ 5 comments posted )

A brief introduction to server-testing with serverspec

Posted by Steve on Thu 13 Mar 2014 at 10:16

Serverspec is the name of a Ruby tool which allows you to write simple tests, to validate that a server is correctly configured. Here we'll walk through the installation of the tool, and show how it can be used to test a server setup.

( Read 1183 more words ~ 0 comments posted )

Hiding processes from other users

Posted by Steve on Thu 13 Mar 2014 at 08:58
Tags: ,

If you run a multi-user system it can increase security if you hide the display of running processes, and their arguments, which belong to other users. This helps avoid problems if users enter passwords on the command-line, and similar.

( Read 293 more words ~ 3 comments posted )

Debian 6.0: 6.0.9 released

Posted by ajt on Mon 17 Feb 2014 at 22:23

The Debian project is pleased to announce the ninth update of its oldstable distribution Debian 6.0 (codename "squeeze"). This update mainly adds corrections for security problems to the oldstable release, along with a few adjustments for serious problems. Security advisories were already published separately and are referenced where available.

( Read 181 more words ~ 0 comments posted )

Using the prosody xmpp/chat server

Posted by Steve on Mon 10 Feb 2014 at 09:07
Tags: , ,

Prosody is a Lua-powered chat-server, which has been around for a few years now. Prosody is very straight-forward to install and configure, and the reliability means that it is a perfect way to provide chat-services to a small office, company, or group of friends. This brief article will cover installing it, both natively and within docker, along with a few pointers to things you can do with it.

( Read 1059 more words ~ 1 comment posted )

Debian 7: 7.4 released

Posted by ajt on Sun 9 Feb 2014 at 17:19

The Debian project is pleased to announce the fourth update of its stable distribution Debian 7 (codename "wheezy"). This update mainly adds corrections for security problems to the stable release, along with a few adjustments for serious problems. Security advisories were already published separately and are referenced where available.

( Read 180 more words ~ 0 comments posted )

Automating the creation of docker images

Posted by Steve on Sun 5 Jan 2014 at 22:57

In our previous introduction to docker we demonstrated how to create images, and manipulate them. That was useful but not as useful as the use of "Dockerfiles", which allow you to automatically build your own images.

( Read 876 more words ~ 8 comments posted )

Using runit for maintaining services

Posted by Steve on Sat 4 Jan 2014 at 10:38

There are several programs, and systems, out there for supervising the execution of child-processes. Perhaps one of the most well-known is runit, which was modelled upon the daemontools software by djb.

( Read 777 more words ~ 0 comments posted )

A brief introduction to using docker

Posted by Steve on Wed 1 Jan 2014 at 19:34

This article is a brief introduction to docker, which is a utility for manipulating lightweight containers, allowing you to quickly spin up multiple isolated environments on a single host-machine.

( Read 1809 more words ~ 7 comments posted )

Joining disparate hosts into a VPN with gvpe

Posted by Steve on Wed 20 Nov 2013 at 22:04
Tags: ,

The GNU Virtual Private Ethernet software allows you to join multiple distinct hosts into a small private network, via a static set of public/private keys. It is ideally suited to joining a small number of hosts in a secure fashion.

( Read 955 more words ~ 6 comments posted )