Our Blog
Have something to contribute? Want us to write about something specific? Let us know!
Protecting Apache2 Against Slowloris DoS
Slowloris is a tool to DoS an HTTP(S) web server without performing a traditional high-bandwidth “flood” approach. I’ll give you some background on how Slowloris is so effective, even today, and how to protect your Apache servers from this type of attack.
The FIDO Alliance’s “Second Factor Experience” In A Nutshell
The FIDO Alliance is a conglomerate of top technology corporations (Microsoft, Google, Oberthur, NXP, Paypal, etc…) aiming to create standardized enhanced authentication with specific goals of “Passwordless Authentication” (UAF) and “Second Factor Authentication” (U2F). Essentially, they want to be able to framework how companies provide secure access to their web resources as well as how users prove their identity to the companies. Here’s my take on the effort.
Authentication solutions comparison
There’s a lot of debate in the information security industry about what the next-gen solution will be for authenticating users into services (websites, applications, etc…). I’ve collected a list of suggested authentication solutions (both hardware and software mechanisms) and will try to shed some light on their pros and cons.
LogMeIn Rescue SAML 2.0 Authentication Tips
I’ve dealt with a lot of integration projects involving Single Sign-On using SAML2.0 but LogMeIn Rescue’s process for achieving this threw me for a loop initially. I’d like to share a little insight to hopefully help others achieve SSO using LMI Rescue with minimal pain.
HowTo: Fix VMware error “No more space for virtual disk”
VMware snapshots will grow over time as they have to maintain a delta file to track what changes have happened to the VM since the snapshot was taken. These will eat up space if left for long periods of time and can eventually consume all of the avaiable free space (thus causing this error).
HowTo: Install Android KitKat 4.4.2 on Samsung Galaxy S4 (Sprint)
This tutorial walks you through installing Android 4.4.2 Kit Kat [OmniROM] on your Samsung Galaxy S4 for Sprint networks.
Dell Inspiron 1545 upgrades on the cheap
There are 3 areas I’d like to cover as upgrades that either improve performance or just ones that I’ve done myself that I’d like to share. There are a lot of question marks about which CPUs or Wireless adapters are compatible. I will tell you what I know for fact will work and what the results of those upgrades were.
Dell Inspiron 1545 Wireless Adapter Upgrade (802.11agn 5 GHz WiFi + Bluetooth 4.0)
After recently moving to a new house, I decided to take some time to carefully plan out my home network. One of the sore points of living in a city is that you have neighbors; lots of neighbors with WiFi APs polluting the 2.4 GHz band. I wanted to avoid this at all costs and decided to enable the 5 GHz radio on my Netgear WNDR3700 v4 running DD-WRT build 22118 (highly capable hardware and firmware combination for a home AP).
Convert Windows Public Certificate (.cer) to OpenSSH Public Key
If you have a PKI certificate in your Windows PC that you would like to use to log in to your OpenSSH-enabled Linux server, it can be a pain to figure out how to extract the public key from this file and convert it into a format OpenSSH can understand.
What’s the Future of Passwords? A Conversation
As professionals in the authentication space, we stay up to date with technology providers and their solutions. For this post I have invited Abby Porter, Director of Product Management at Delfigo Security to discuss whether it’s time to get rid of passwords all together, and the challenges associated with doing so.