Correspondence between OpenSSL cipher suite names and RFC names taken from http://testssl.sh/openssl-rfc.mapping.html.
TLS Configuration for nginx to Get A+ in HTBridge and SSL Labs Tests
This post presents a TLS configuration for nginx to get A+ score in HTBridge and SSL Labs tests. According to HTBridge, this configuration is compliant with PCI DSS, NIST, and HIPAA guidelines.
Signal Desktop and Failed to Map Segment from Shared Object Error
Signal is a great encrypted communications application built upon Electron framework. Couple of months ago I faced the issue that Signal had failed to start showing a message like this: “Uncaught Exception: Error: /tmp/.org.chromium.Chromium.j4ITUv: failed to map segment from shared object”.
Here is the solution.
Pitfalls When Upgrading Ubuntu Xenial to Bionic
The article describes a few pitfalls I encountered when trying to upgrade from Ubuntu 16.04.5 (LTS) to Ubuntu 18.04.1 (LTS) and possible solutions.
Sometimes I Hate systemd
After upgrade from the latest Ubuntu 16.04 LTS to Ubuntu 18.04.1 LTS, the server refused to reboot. I had to use IPMI to connect to the otherwise unresponsive server and reboot it forcefully. I probably should have used sync; reboot
CentOS 7: How to Change SSH Port
Many times my colleagues have asked me how to change SSH port on CentOS 7, because the way they did it themselves resulted in failures of OpenSSH to start. This happened because of SELinux, and the post explains how to overcome the issue without turning SELinux off.
How to Integrate rkhunter with yum
One of the features of rkhunter in CentOS that I miss is the ability to update rkhunter‘s property database automatically after yum is run (just like in Debian). This post explains how to implement this feature.
How to Integrate monit with yum
Monit is an utility for managing and monitoring processes, programs, files, directories and filesystems on a Unix system. It is often used to restart daemons on failures and abnormal situation, and sometimes to detect changes into critical files and / or daemon binaries. This article explains how to make yum package manager play nice with monit.
Bootstrap Alpine Linux LXD Container with Ansible
A recipe to bootstrap an Alpine Linux based LXD container with Ansible.
How to Log Successful SSH Login Attempts
Sometimes it can be useful to get notified when someone logs into the system via SSH. This article shows several possible solutions how to configure those notifications.