In my last two articles, I looked at the Django Web application framework, written in Python. Django's documentation describes it as an MTV framework, in which the acronym stands for model, template and views. more>>
In my last article, I started a series on some of the challenges related to spawning secure servers on Amazon EC2. In that column, I discussed some of the overall challenges EC2 presents for security compared to a traditional infrastructure and elaborated on how I configure security groups and manage secrets. more>> […]
Through the years, I have settled on maintaining my sensitive data in plain-text files that I then encrypt asymmetrically. Although I take care to harden my system and encrypt partitions with LUKS wherever possible, I want to secure my most important data using higher-level tools, thereby lessening dependence on the underlying system configuration. more> […]
Debian and Ubuntu are moving to update all C++ packages with GCC5, which was released in April. GCC stands for Gnu Compiler Collection, and it is used to convert source code to executable code and libraries. These compilers are used to build everything from the Linux kernel to user applications, so it's a far-reaching change. more>> […]
There's a slow effort underway to allow virtually any part of the kernel to be extracted into its own shared library, thus enabling users to use any alternative subsystem they please. There's a long history of this, going back to the debate between micro-kernels and monolithic kernels. more>> […]
Although the Linux kernel forms the beating heart of the Android operating system, it's still a very different platform from most distros. In fact, beyond the kernel, most of the libraries, services and applications are completely different. While there are hundreds of different Linux distros out there, they all share components from the GNU project. mo […]
The target vehicle for this project is a vintage intercity transport bus (think Greyhound) whose instrument panel was sparse and mostly nonfunctional. The speedometer cable was twisted off some place back in 40 feet of cable, and the fuel sensor had sunk long ago. What I wanted was an instrument panel more in line with modern practice. more>> […]
In the world of FOSS, a small change to a license can be a big deal. For users of proprietary software, changes in the EULA are hardly even registered. Those users click "Ok" and forget about it in the blink of an eye. They have accepted that they are severely limited as far as their rights to alter or redistribute the software is concerned. more […]
The concept of PortableApps has been around for a long time. It's a great way to take your Windows apps from computer to computer using a USB drive and never worry about being without your favorite program. Honestly, remembering to carry around a USB drive can be a bit of a pain though. more>> […]
Suhosin is an advanced protection system for PHP installations. It was designed to protect servers and users from known and unknown flaws in PHP applications and the PHP core. How can I install suhosin extension on a Debian v8.x or Ubuntu Linux 14.04 LTS server?
I setup a web-server. I need to grant a user ssh access but I do not trust users. How can I limit user session to a specific directory such as /home/httpd/$USERNAME? How do I set up a ssh chroort jail on a Linux operating systems?
How do I use and jump through one server to reach another using ssh on a Linux or Unix-like systems? Is it possible to connect to another host via an intermediary so that the client can act as if the connection were direct using ssh?
I'm using Debian Linux server with Linux Containers (lxc). How do I disconnect and exit from an lxc-console to a shell prompt without closing ssh session? You need to use the to log in to a running Linux container. The syntax is as follows: lxc-console -n container-name lxc-console -n webserver lxc-console -n pgsql To exit […]