8 posts
Using Let’s Encrypt TLS Certificates for SMTP, IMAP, and HTTP
One of the greatest advances towards securing the Internet happened on April 12, 2016 when the Internet Security Research Group (ISRG) launched the “Let’s Encrypt” X.509 Transport Layer Security (TLS) (you
Ubiquiti - Configure micro-segmentation for IoT devices
Internet of Things (IoT) The Internet of Things is a label that the computer industry, the media, and manufacturers have created to describe small devices that live on a network and provide a
12 min read
Cryptolocker - An Executive Infection
On Monday morning, I got a call from one of our Executives telling me that his home computer was displaying a strange message and asking for some assistance.  I asked what was displaying
Astaro Security Gateway - Setting up a Public Web Server with Web Application Firewall
I run an Astaro Security Gateway (ASG) from Sophos (now called Sophos Unified Threat Management [] (UTM)) for the bulk of my firewall needs at
Configure SSH2 Access for Updating WordPress
WordPress is one of the most popular blogging platforms on the Internet. One of the first things I do when I setup a new WordPress installation is harden it. You can read about
Secure your WordPress Installation
WordPress [] is an extremely popular web platform with about 7% of all websites [] running WordPress. That large a population means that attackers have a rich
CloudEngines Plugs Security Flaw in Pogoplug with Firmware 2.1
In my original Blog Post entitled Beware the Pogoplug [] I pointed out a rather serious security hole in the Cloud Engines []‘ Pogoplug device. That security
Beware the PogoPlug
Today marks a milestone for me.  I started a blog.  I have no idea how long I’ll write this, but something I found out recently compelled me to share what I know.