Security / Hacks Category
Unifi Security Gateway JSON config
Posted on March 17, 2020 1 Comment
The Unifi series from Ubuquiti has great features for centralized management of larger networks. There are however many things not supported in the Cloud Key UI that still can be configured. During the last deployment, we had two additional needs we couldn’t accomplish from the Cloud Key itself. Multiple WAN addresses – we needed to […]
reCAPTCHA v2 vs reCAPTCHA v3
Posted on February 24, 2020 Leave a Comment
CAPTCHA was first invented in 1997 to distinguish a human from a bot performing an action. Back in the day captchas were usually obscured or deformed letters. Before that, we had the simple question verification like “what is 1 + 9” which is simple enough once the bot scrapes it off the page. In 2007 […]
Dealing with credentials in PowerShell
Posted on February 10, 2020 Leave a Comment
Whenever you write PowerShell scripts that are going to be used for automation you need to secure your credentials. The best practice is to use a service account to execute the PowerShell script and delegate whatever privileges it needs to execute. When dealing with internal systems and resources that are usually pretty easy if they […]
Free SSL certificates
Posted on July 20, 2017 Leave a Comment
StartSSL certificates isn’t trusted by several major browsers anymore and will probably lose all credibility and disappear from the market completely. In it’s place we have seen Let’s Encrypt growth explode for the last 18 months. This post will cover some background and how to use setup Let’s Encrypt on your Amazon EC2 Apache based […]
Free in flight Wifi
Posted on March 6, 2017 Leave a Comment
For the last year and a half I have been flying back and forth between Sweden and San Francisco. Most of the airlines I fly have in flight Wifi for a cost. Usually I think it’s pretty reasonable money for the 11 hours or so I get a connection. But when ever I get bored […]
WD NAS: Enable FTPS
Posted on May 5, 2016 2 Comments
Sending unencrypted FTP across the internet is a bad idea! You send your credentials in plain text compromising access security as well as the data your sending. My book live duo has, as most NAS products, support for unencrypted FTP. Since it’s based on vsftpd it’s only a matter of configuration to make it a […]
Comcast Xfinity: Disable XfinityWiFi
Posted on April 5, 2016 Leave a Comment
Never liked the additional SSID xfinitywifi that my Comcast router broadcasts. What ever Comcast writes on their site of course it effects my bandwidth and my overall wifi performance. If you login to your customer pages at xfinity.com there is an option to disable it (outlined here). I also disabled my own wifi since the […]
WebRTC vulnerability exposes VPN users
Posted on February 6, 2015 2 Comments
It’s now easy to expose the true IP address of VPN users. Daniel Roesler published the an example howto exploit the bug on Github. Firefoz, Mozilla, Chroma and Internet Explorer (with WebRTC plugin) are vulnerable to this bug. WebRtc is used for peer-to-peer connections for video chat and other similar implementations. If the user isn’t […]
Check for shellshock
Posted on September 26, 2014 Leave a Comment
So the new issue on the board is shellshock? Not really it has been around for 20 years but hasn’t been a problem until now. Same with heartbleed, was there for over two years before it was discovered. I will show you how to check if your effected and how to stay safe.
Open Source: A false sense of security
Posted on September 25, 2014 Leave a Comment
The heartbleed vulnerability dropped like a bombshell, a large majority of web servers on the internet was sharing there memory with the world. The even bigger bombshell was that the vulnerability had existed for over two years. Most people consider open source more secure then proprietary code since anyone can verify that it’s safe. The problem […]
Hackviking aka Kristofer Källsbo 