Was ist das? OpenVAS is a vulnerability scanner. If you are unfamiliar to the vulnerability scanning world this can be an overwhelmingly experience but tools like this are what makes the matter more accessible, more manageable, easy to see and easy to fix. Before digging into the matter at hand here, that is how to […]
How to install OpenVAS on FreeBSD
The root account
Users. What the hell you mean by “root”? Are you a Windows user? I bet you have the user account badly configured. By default Windows is installed under the Administrator account. And nobody bothers to change this and add a second account. That second account should be an underprivileged one. If you own the computer […]
How to install Apache in FreeBSD with pkgng
The Apache Web Server is one of the most widely deployed web servers around the world. There are new and powerful alternatives you may have heard of, such as NGINX which seems to be the coolest thing around lately. There are meaningful differences between the two. Both are great but for example Apache has set […]
How to manually update Letsencrypt certificates on FreeBSD
Update 05-2020: If anyone is interested on the automatic process you can read my tutorial on DigitalOcean about the topic. On this guide we will manually update our Letsencrypt certificate on FreeBSD for a single website. It is a simple operation that can be automated as a cron job, but seeing it is always informative […]
How to set the locale in FreeBSD
The locale is the character set that will be used. And it is very important to match the keyboard you are using. Mind this also matters if you are transferring data to other systems. Different standards as the ASCII, UTF’s and the ISO’s, to name a few, have been put in place through the years […]
How to secure the ELK stack on CentOS 8
This is a follow up of the ‘how to install the ELK stack on CentOS 8’. That is a basic setup with no security at all. There is no encryption, no username and password setup, nothing. Not even firewall rules to filter ports. And as it’s known security can’t only rely on one factor but […]
How to test SSL/TLS configurations
If you are in charge of any site with SSL/TLS conenctions enabled you are always in the chase to get the best possible and most secure configuration. This isn’t always the case and the lack of time does take its toll on many administrators. Those individuals are always asked to do more with less and […]
How to connect a FreeBSD box to the internet through an Android device via an USB port
FreeBSD is known to be very suitable for computer servers, from Netflix streaming to Whatsapp messaging as powerful examples. Some also use FreeBSD as a workstation OS. I am one of those using BSD on both camps, although I also use some GNU/Linux boxes for ‘trivial’ purposes. In modern times having an internet connection seems […]
How to harden Apache HTTP
Disclaimer: This is a long article. I haven’t collected some nice configuration settings here for the sake of it. There are other hardening guides but some fall short on explaining the functionalities to be enabled or disabled. Every step is shortly, and hopefully clearly, explained so any reader can grasp the main idea of every […]
FreeBSD particularities
As some others unix-like operating systems FreeBSD has some particularities aside to the UNIX heritage, licensing and the like. The init system is the way a system starts up and the BSD has always been different. If you happen to be a UNIX admin I am sure you are aware of this and the folks […]