Posts in the Category: Blog

Portainer, an easier way for managing docker containers

Kubernetes and its lite version – Minikube – are the traditional way of managing a group of docker containers.

They are not intuitive and it takes a while to feel comfortable using them.

Kubernetes may still be …

Transparent proxy from OWASP

ZAP seems like a very good tool for pen testing, but also for debugging HTTP requests between microservices.

The best thing is that it can be run with docker.

An example of setting it up as …

Flashing smartphones with custom firware

This project -> https://plasma-mobile.org/nexus-5/ seems very interesting.

The technology does not seem mature yet, but there is certainly a lot of value in it.

Kubernetes tutorial

This is a good tutorial on starting with Kubernetes and a a fast way of deploying new applications into the cloud -> http://kubernetes.io/docs/hellonode/

iptables rule to deny all ports except the ones allowed

sudo iptables -A INPUT -p tcp -m tcp -m multiport ! –dports 80,443,22 -j DROP

Softinite.com reloaded

Yet another attack, related to ‘ragenergy’, has caused the website to be blacklisted by Google and FortiGuard.

It took a while to clean it up in my free time.

Useful tools: fail2ban, monit, nginx.

Traffic throttling using iptables

It can be useful in certain cases to limit the frequency of certain request as described here.

Key code:

iptables -I INPUT -p tcp –dport 22 -i eth0 -m state –state NEW -m recent \
…

Softinite.com under attack Part III

Some South African IPs have been SYN flooding my website today.

The proposed solution was to enable SYN cookies in /etc/sysctl.conf:

net.ipv4.tcp_syncookies=1
net.ipv4.tcp_max_syn_backlog=2048
net.ipv4.tcp_synack_retries=3

When one works over ssh, ‘sysctl -p /etc/sysctl.conf’ can be used to activate the changes.