Pushing successful SSH logins to PushBullet
January 25, 2016
On Friday I ran across Sandrino Di Mattia’s post “Posting successful SSH logins to Slack” which was very easy and a very nifty idea. Already most of my notifications from various systems (Datadog, Tutum, Twitter, etc) are gathered into a notification channel on Slack, so I jumped on the chance to try out this script. It worked great, but I realized there was one major issue: my slack notifications are plentiful and passive. I have only a few internet accessible servers and I care about them a great deal, so I want to know if anyone is accessing them (since it should only be me). So I added push notifications for successful SSH logins!
Please don’t give your laptop to a stranger
September 28, 2015
Who’s laptop is this? Who cares! It could be yours in just a few seconds. You’re saying to yourself “This is silly, I would never willingly give my laptop to a complete stranger (in a public setting)”. However people do “give away” their laptops, or attempt to do so on a daily basis. Just today I was attending a bootcamp (which I’ll write about another day) in the AWS Loft SF and saw the horror that was abandoned laptops. Just like you see pictured to the right, laptops left without owners. This wasn’t just during a quick bathroom break that the machines were left, we’re talking about over lunch when most of the class had left to forage.
“Bank grade security” used to mean something (Updated)
February 12, 2015
Recently Gizmodo ran a good, albeit lengthy, article titled “Here’s Why Your Bank Account Is Less Secure Than Your Gmail” on the topic of multi-factor authentication (MFA) and your bank. It also reminded me of another article from 2007 titled “Password Security – Or Lack There Of“. Sadly “bank grade security” used to mean the best of the very best, whereas now any digital security relating to financial institutions tends to be a joke.
Using Cloudflare as a Banhammer
December 23, 2014
These days “Snowulf” has become a loosely knit network of sites and projects. Most of the hosting is for myself, projects I’m involved with, or friends. Since I already pride myself in keeping my server online for the Snowulf Blog, adding a few other sites to the same server isn’t much of an issue. However the major headache of any site addition is… security. Every site and piece of software is slightly different. Most of the work is offloaded to Cloudflare’s Web Application Firewall however they’re not 100%. With some cheap tricks (and PHP), I’ve taught Cloudflare how to be a big banhammer.
Using Cloudflare to keep sites fast & secure
May 1, 2012
Cloudflare is a <a href="https://en.wikipedia.org/wiki/Content_delivery_network” title=[wiki] Content delivery network">CDN, site optimizer, and security product all rolled into one. The main feature that is of use to me (and most people, I presume) is the CDN portion which some have called a “poor man’s Akamai“. Cloudflare sits in front of your website and acts like a caching layer spread out across 14 global edge nodes. This means your site should be “fast” everywhere in the world, rather than just within 3,000 miles of your server. I’ve been using it for a few sites over the last couple of years and so far I’ve had good experiences with the service. It being free (with a premium option) has definitely helped.
Travel and the TSA
November 15, 2010
Earlier today, ABC News reported on a man who raised a concern about how his TSA patdown might go, specifically: “If you touch my junk, I’m going to have you arrested”. Not surprisingly, he didn’t get past security, but this brings up a bigger point. Are these patdowns and security measures getting a bit “overenthusiastic”?
AIM gone the way of the phone
March 12, 2005
And by that I don’t mean it does VoIP – I mean that its now recorded. The original entry from Thrashing Through Cyberspace blog. To make a long story short, AIM now reserves the right to do what ever the hell they want with what you say on AIM. There are a few business’s that I’m sure use AIM for communication, no more. Where I worked we used to use Yahoo (now Skype).