-
Archives
- April 2024
- March 2024
- December 2023
- November 2023
- October 2023
- July 2023
- April 2023
- March 2023
- February 2023
- October 2022
- February 2022
- January 2022
- December 2021
- September 2021
- August 2021
- July 2021
- March 2021
- January 2020
- May 2018
- May 2017
- April 2017
- March 2016
- February 2016
- December 2015
- September 2015
- March 2015
- January 2015
- October 2014
- June 2014
- March 2014
- February 2014
- December 2013
- November 2013
- August 2013
- July 2013
- June 2013
- May 2013
- February 2013
- October 2012
- July 2012
- May 2012
- April 2012
- March 2012
- February 2012
- January 2012
- November 2011
- October 2011
- June 2011
- May 2011
- April 2011
- December 2010
- November 2010
-
Meta
Category Archives: Security
Securing large language models with a reverse proxy
In a previous post, I explained how to host a private ChatGPT using Docker and Traefik. I didn’t spend a lot of time on the security aspect of the project. I see many people asking how to expose their large … Continue reading
Troubleshoot HTTP API requests with mitmproxy
Sometimes you connect a new tool to one of your servers and it doesn’t work as expected. You are sure you follow the documentation or tutorials but you don’t get the expected results. Before you throw away everything, you should … Continue reading
Posted in Computer, Docker, Linux, Networking, Security, Software
Leave a comment
OpenSSH CVE-2023-48795 mitigation
If you cannot upgrade your OpenSSH client and/or server to fix CVE-2023-48795, also known as the Terrapin attack, the way to mitigate it is to disable the vulnerable ciphers as Red Hat explains very well. If you have a recent … Continue reading
Posted in Computer, Linux, Networking, Security, Software
Leave a comment
Suricata and fail2ban
In case you want to ban IP addresses based on Suricata fast.log, here is the filter you need: In the jail configuration, I suggest you change the default blocktype from REJECT to DROP. Edit 2023-03-24: you may want to use … Continue reading
Posted in Computer, Linux, Networking, Security, Ubuntu
Leave a comment
Fortigate: SAML authentication in firewall policy with Keycloak
First, create a new Single Sign-On authentication under User & Authentication. As of version 7.0.6, the GUI does not specify ports and does not let you change them either. To work around this, use the CLI. Default ports used by … Continue reading
Posted in Networking, Security, Uncategorized
Leave a comment
Elasticsearch in Docker: threat intelligence with filebeat
Goals: collect observables from supported feeds collect observables from unsupported feeds with elastic-tip
Posted in Computer, Docker, Linux, Networking, Security
Tagged docker, elastic, filebeat, ioc, kibana, monitoring, security, threatintelligence
Leave a comment