As recently announced in a previous article I wanted to write a couple of guides on how to mitigate Spectre and Meltdown vulnerabilities in GNU/Linux and UNIX environments. It is always a good and I hope a standard practice to have your systems patched and if they aren’t for whatever the reason (that legacy thing […]
How to mitigate Spectre and Meltdown on an HP Proliant server with FreeBSD
How to harden Apache HTTP
Disclaimer: This is a long article. I haven’t collected some nice configuration settings here for the sake of it. There are other hardening guides but some fall short on explaining the functionalities to be enabled or disabled. Every step is shortly, and hopefully clearly, explained so any reader can grasp the main idea of every […]
How to install Mate on FreeBSD 12/13
In this how to install Mate on FreeBSD I’m not going to repeat the same guides you can read elsewhere. If you desire to use FreeBSD as a daily driver desktop, I do encourage you to read and follow the guides from this other guy. The guide you are currently reading can be considered the […]
Lynis or how to quickly audit your system’s security configuration
A colleague of mine pointed me out to Lynis, a system’s configuration audit tool which checks the hardening of any running UNIX or UNIX-like system, including the BSDs. This tool has a built in check list and a set of sane and safe configurations and compares them to the target system. As output we find […]
How to synchronize system and network time in FreeBSD
For several applications it is necessary to synchronize your server to the network time. The protocol is called Network Time Protocol (NTP) and is basically giving the correct time to the world nowadays. Reading the Wikipedia entry is very interesting. FreeBSD comes with the ntp client. To set this up you will just add the […]
How to securely install WordPress on FreeBSD
If you have already read my guide on how to install WordPress on FreeBSD you will have been a bit disappointed since at the end there is a deceptive paragraph that reads as follows: Now be aware you will set a user name and password for your wordpress install. They will be sent in plain […]
How to patch OpenSSH in FreeBSD 12.2
The default version of OpenSSH in FreeBSD 12.2 today, and it’s been this for quite some time, is not the most recent published by the OpenBSD guys, which by the way are the ones developing OpenSSH. Not only is not the latest but it has a few vulnerabilities affecting it, medium risk ones but nevertheless […]
How to install WordPress on FreeBSD
You can find information about how to install WordPress on FreeBSD somewhere else since there are many tutorials around explaining it. However I thought mine would be a bit more interesting to you. Read on. As you should be aware (and hopefully you already are) installing WordPress requires a stack of other software. Typically you […]
How to improve Apache HTTP performance on FreeBSD
There are some nice articles on the internet telling you how to improve your Apache HTTP server’s performance. I did my bit on FreeBSD land. While turning on a different MPM than the prefork default one increases Apache HTTP performance by a lot, it is not the only thing one may do. For example if […]
How to manage site visitors based on IP Geolocation
Whenever someone publishes a website on the internet, most of the times, their intention is that site to be seen around the globe. However, as a site administrator you may want to divert users from one country to visit some specific version of that site, maybe because of the visitor’s language. Other times, less often […]