How to patch Sudo

Gunnard/ January 28, 2021/ Devops, Security/ 0 comments

CVE-2021-3156: Heap-Based Buffer Overflow in Sudo (Baron Samedit) made itself known over the past few days and admins everywhere are rushing to patch it. Ill skip the analysis, watch the video below for that, and get right to patching.

Free PHP Malware and Security scanners [Part 1]

Gunnard/ October 8, 2020/ Development, Devops, PHP, Security/ 0 comments

Exakat Exakat is a tool for analyzing, reporting and assessing PHP code source efficiently and systematically. Exakat processes PHP 5.2 to 7.4 and 8.0 code, as well as reporting on security, performance, code quality, migration. –Exakat docs Static analysis of code is a great tool to use whether for unit testing or in this case security vulnerabilities and malware infestations.

Read More

HTTP/3 and IETF QUIC coming to a chrome near you

Gunnard/ October 8, 2020/ Development, Devops/ 0 comments

But first…. Are we really at http/3? and what the heck is IETF QUIC? QUIC is a new networking transport protocol that combines the features of TCP, TLS, and more. HTTP/3 is the latest version of HTTP, the protocol that carries the vast majority of Web traffic. HTTP/3 only runs over QUIC. Why do we need this? Blame the xennials.

Read More

Mastodon Is Better than Twitter: Elevator Pitch

Gunnard/ August 18, 2018/ Devops, Learning/ 0 comments

Great article on why you should choose Mastodon (not the band even though they are great and I would choose them over Twitter any day)  Vs Twitter Mastodon is a newcomer social media platform that is a lot like Twitter—short messages, followers, hashtags, all that. But Mastodon is much better than Twitter, and not just because being totally ad-free and

Read More

Politicians Concerned Crypto can Influence Elections – Should Focus on Firing Politicians Instead

Gunnard/ July 1, 2018/ blockchain, Devops, hacking, Learning/ 0 comments

There are many great arguments here posted hee brings up some great ideas. what do you think? 100% via (decentralized tv) https://decentralized.tv/politicians-concerned-crypto-can-influence-elections-should-focus-on-firing-politicians-instead/  

Simple Script to check sha certificate expiration date

Gunnard/ January 30, 2017/ Devops/ 0 comments

I came across this problem over the weekend. I needed to know quickly the expiry date for our new SHA-2 certificate. After some googleing I patched together this script. OPENSSL=”/usr/bin/openssl” HOST=$1 PORT=$2 if [ “$HOST” == “” ]; then echo ‘Usage: check.sh hostname.com fi if [ “$PORT” == “” ]; then PORT=”443″ fi CMD=`echo “” | $OPENSSL s_client -connect $HOST:$PORT

Read More

Configuring RSYNC for backups to AWS

Gunnard/ December 14, 2016/ Devops/ 0 comments

Backups are important, we all understand this. Backups are also offered by most major services like Linode, which is a great failsafe. The problem that occurs when you have a need to use that backup to restore your system is that you are relying on Linode’s latest backup whenever that was (usually within 24 hours). For some a ~24 code

Read More