Liens sweethome

How do I mount /tmp with nodev, nosuid, and noexec options to increase the security of my Linux based web server? How can I add nodev, nosuid, and noexec options to /dev/shm under Linux operating systems?

January 8, 2024 at 11:53:09 AM GMT+1 * · permalien

·

https://www.cyberciti.biz/faq/linux-add-nodev-nosuid-noexec-options-to-temporary-storage-partitions/

How to check if noexec flag exists on a linux os

January 8, 2024 at 11:44:34 AM GMT+1 * · permalien

·

https://docs.opswat.com/mdcore/knowledge-base/how-do-i-check-if--noexec--flag-exists-on-a-linux-os-

What is noexec Option in Linux /etc/fstab and how it works - howtouselinux

The noexec option in /etc/fstab (File System Table) in Linux is a mount option that specifies how a filesystem should be mounted, particularly with regard to the execution of binaries. When a partition is mounted with the noexec option, it means that you cannot execute any binaries that are stored on that partition. Understanding /etc/fstab …

January 8, 2024 at 11:43:36 AM GMT+1 * · permalien

·

https://www.howtouselinux.com/post/what-is-noexec-option-in-linux-etc-fstab-and-how-it-works

Wormhole - Partage simple de fichiers privés

Wormhole vous permet de partager des fichiers avec un chiffrement de bout-en-bout et un lien qui expire automatiquement.

January 4, 2024 at 3:14:24 PM GMT+1 * · permalien

·

https://wormhole.app

The Flask Mega-Tutorial, Part III: Web Forms - miguelgrinberg.com

wtf-form

flask · programming · python · forms · wtforms · input · html

January 1, 2024 at 8:46:19 PM GMT+1 * · permalien

·

https://blog.miguelgrinberg.com/post/the-flask-mega-tutorial-part-iii-web-forms

CSRF : principes, impacts et bonnes pratiques sécurité

Les attaques CSRF sont utilisées pour compromettre une application web. Principes, impacts, nous vous détaillons les CSRF et les bonnes pratiques sécurité

cyber

January 1, 2024 at 8:36:12 PM GMT+1 * · permalien

·

https://www.vaadata.com/blog/fr/attaques-csrf-principes-impacts-exploitations-bonnes-pratiques-securite/

Préconisations de durcissement Windows

December 29, 2023 at 3:19:39 PM GMT+1 * · permalien

·

https://processus.site/preconisations-durcissement.html

Vue d’ensemble de la signature de bloc de messages du serveur - Windows Server | Microsoft Learn

Décrit comment configurer la signature SMB et déterminer si la signature SMB est activée.

cyber

December 29, 2023 at 3:05:24 PM GMT+1 * · permalien

·

https://learn.microsoft.com/fr-fr/troubleshoot/windows-server/networking/overview-server-message-block-signing?WT.mc_id=SEC-MVP-5005061

Yubikey et ouverture de session ubuntu

December 29, 2023 at 9:31:43 AM GMT+1 * · permalien

·

https://developers.yubico.com/pam-u2f/

Detecting keyloggers (T1056.001) on Linux endpoints | Wazuh

This blog post focuses on detecting Indicators of Compromise (IoC) for keyloggers that utilize living-off-the-land (LOTL) techniques.

cyber

December 28, 2023 at 2:23:40 PM GMT+1 * · permalien

·

https://wazuh.com/blog/detecting-keyloggers-on-linux-endpoints/

New user guide: How to organize your qubes | Qubes OS

The following is a new how-to guide for users who are starting out with Qubes OS. You can also find it in our documentation under How to organize your qubes. When people first learn about Qubes OS, their initial reaction is often, “Wow, this looks really cool! But… what can I actually d...

December 22, 2023 at 12:47:15 PM GMT+1 * · permalien

·

https://www.qubes-os.org/news/2022/10/28/how-to-organize-your-qubes/

Linux : tracer les accès au système de fichiers d’un programme | IT-Connect

Dans cet article, je vais vous présenter quelques méthodes pour tracer les accès et tentatives d'accès d'un programme sur les fichiers d'un système Linux.

linux · commandes-et-système

December 22, 2023 at 12:31:56 PM GMT+1 * · permalien

·

https://www.it-connect.fr/linux-tracer-les-acces-au-systeme-de-fichiers-dun-programme/

Dumping NTHashes from Microsoft Entra ID | Secureworks

While investigating a different Azure AD vulnerability in December 2022, Secureworks Counter Threat Unit researchers discovered that stored NTHashes could be recovered via the Microsoft Graph API and decrypted using a certificate stored on Azure AD Domain Services (Azure AD DS) domain controllers.

cyber

December 20, 2023 at 9:18:16 PM GMT+1 * · permalien

·

https://www.secureworks.com/research/dumping-nthashes-from-microsoft-entra-id

Detect Successful SSH Brute Force Attacks

Learn how to detect successful SSH brute force attacks and other advanced behaviors using the conditional bucket feature in CrowdSec Security Engine 1.5.

December 20, 2023 at 4:47:57 PM GMT+1 * · permalien

·

https://www.crowdsec.net/blog/detecting-successful-ssh-brute-force

Docker - Hardening with firewalld

Containers are no virtual machines - yet we might want to treat hosts running container workloads like hypervisors and apply limitations on container networking. This guide describes a way to limit container networking on docker based container hosts using firewalld.

December 19, 2023 at 11:15:44 AM GMT+1 * · permalien

·

https://blog.nuvotex.de/docker-hardening-with-firewalld/

Cron et crontab : le planificateur de tâches ! - Wiki - Wiki

December 19, 2023 at 8:19:11 AM GMT+1 * · permalien

·

https://www.linuxtricks.fr/wiki/cron-et-crontab-le-planificateur-de-taches

Crontab.guru - The cron schedule expression editor

An easy to use editor for crontab schedules.

December 19, 2023 at 8:19:01 AM GMT+1 * · permalien

·

https://crontab.guru