After upgrading my website to PHP 8.1, Google alerted me to some URLs that were being blocked by mod_security. Learn how I fixed that error and set up rewrite rules to fix the old URLs on the fly.
Category: Security
Yet another new GPG key
While rummaging around the computer the other day, I realized that my GPG key had expired quite some time ago. I decided that even though I haven’t used it in years, it was time to create another keypair and publish it to the world. You can find it here, and you can learn a bit… Continue reading Yet another new GPG key
Use a custom certificate with XRDP the easy way
It’s easy to use a custom certificate with the Linux XRDP service if you follow this simple guide.
How to replace Unifi Network’s default TLS certificate
In this blog post, I explain how to replace the default Unifi Web certificate stored in a Java keystore with your own certificate.
Easily generate an HTTPS certificate for Kibana (with bonus AI)
As part of my upgrade to Elastic 8 and modifications to Kibana, I also decided to add a TLS certificate so I could encrypt my traffic with HTTPS. Not because I’m terribly worried about some hacker listening in on my super-secret Kibana traffic, but because these days there’s no reason not to encrypt everything. In… Continue reading Easily generate an HTTPS certificate for Kibana (with bonus AI)
How to configure Kibana behind an nginx proxy
In my previous post about upgrading to Elastic 8, I signed off with the promise of sharing how I put Kibana behind an nginx proxy. Here’s the post on how I did that, and what I did to make it work after a few hours of messing around with various settings. If you want the… Continue reading How to configure Kibana behind an nginx proxy
My almost-effortless upgrade experience (and lessons learned) with Elastic 8
I had a relatively painless upgrade from Elastic 7 to Elastic 8, and your experience can be even better if you keep a few things in mind based on my lessons learned.
Investigating a WordPress Compromise
It’s been a while since I updated this blog, and this lack of attention (and falling behind a few versions in WordPress) led to this very site getting hacked! Fortunately, I was quickly alerted to it thanks to Google, and if nothing else, this presents an interesting case study in investigating what happened. Full details… Continue reading Investigating a WordPress Compromise
PKI Revisited
A little more than two years ago, I set up a PKI and did a post on it. The main goal was to get a certificate on my EdgeOS router to get proper HTTPS support without the annoying red X. When I did it, however, I didn’t do it quite right, and so I decided… Continue reading PKI Revisited
Encrypt All The Things
I am a security guy, and my profession is to protect the good guys – all of you – from the bad guys. Although the world is not full of bad guys, there are a lot of them, and the funny thing about information security is that the most poorly-skilled bad guy out there only… Continue reading Encrypt All The Things