Security | Danny Tsang

Dec/19

Pi-hole DNS Filtering

Filed Under Container, Infrastructure, Linux at 2nd December 2019 0:01 by Danny

Tags: DNS, dnssec, Network, Networking, pihole, Security

Overview Pi-hole is a very light weight, DNS filtering server. It’s so light that there are reports it can even run on a Raspberry Pi 1! Example reasons for filtering DNS include blocking ads to filtering out harmful sites (content … Continue reading →

Jul/19

Home Networking Overview

Filed Under Networking at 1st July 2019 0:01 by Danny

Tags: 802.1x, dpi, Networking, QOS, Security, ubiquiti, unifi, vlan

Overview My goal was to have the ability to manage and control devices connected to my network but also make it as seamless as possible for the users. These goals can be broken down into 3 areas: Securing devices Network … Continue reading →

Jun/19

Backup Overview

Filed Under Infrastructure at 3rd June 2019 0:01 by Danny

Tags: backup, local, malware, offsite, online, Security, virus

Overview This post ties all the backup posts into 1 overview of the backups. There are 3 main types based on the location of where the data is stored / managed: Local Offsite Online Local Backup Data that resides in … Continue reading →

Jun/18

Securing HAProxy Headers

Filed Under Linux, Networking, Web Server at 4th June 2018 0:01 by Danny

Tags: Google, HAProxy, http, HTTPS, nginx, PHP, proxy, Security, ssl

Overview https://securityheaders.io will give a score of how well placed the HTTP headers are on a site ranging from A+ to F (not sure what the R rating is for). Headers are a powerful meta (invisible to the naked eye) … Continue reading →

Dec/16

Post MySQL Install

Filed Under Database at 5th December 2016 0:01 by Danny

Tags: mysql, Security, Ubuntu

After installing MySQL you can run the below command to secure your install: sudo mysql_secure_installation The script will ask a bunch of questions and act accordingly so it is only as secure as you want it to be but it … Continue reading →

Sep/11

SpiderOak Mini Review

Filed Under Software at 28th September 2011 0:01 by Danny

Tags: backup, cloud, Dropbox, encryption, Linux, Security, spideroak, sync, Ubuntu, Windows

Overview I was looking for a replacement to Dropbox after the EULA / T&C changes and found SpiderOak to be a very attractive alternative. It’s a backup and folder sharing / sync software which runs on all 3 major platforms … Continue reading →

Sep/11

Remove WordPress Default Admin Account

Filed Under Security, WordPress at 5th September 2011 17:19 by Danny

Tags: Security, WordPress

A good security tip is to remove the default “admin” account that is installed by default. Before doing so create a new user who also has the role Administrator. When deleting an account such as the admin one, WordPress can … Continue reading →

Jun/11

Apache 2 Hardening Tips

Filed Under Linux, Security, Web Server at 26th June 2011 0:01 by Danny

Tags: apache, DDOS, Security, server, Ubuntu

Below are some of the tricks I use or found useful to try to mitigate unwanted attention. Whilst this is not a definitive guide these are simple quick things that can be done. This was written for Ubuntu but it … Continue reading →