Tag: Security Policy

How to Implement Zero Trust Security in 5 Steps

Posted on November 26, 2020 by David Singer | Updated: August 25, 2023

Category: Tutorials | Tags: Audit, Authentication, Code, Code Analysis, Code Injection, Common Questions, Compliance, Compromise, Compromised Website, Content Security Policy, Data Leak, Diagnostics, Encryption, Fail2Ban, File Permissions, Firewall, Google Authenticator, Hacking, HIPAA, Least Privilege, Linux, LUKS, Lynis, Malware, Passphrase, Password, Password Policy, PCI, PCI Compliant, Pen testing, Permissions, Remote Code Execution, Root, Security, Security Policy, Security Practices, selinux, Server, SSH, SSH Keys, SSH Ports, SSL, Tools, VPN, Vulnerability

Reading Time: 6 minutes

What is Zero Trust Security?

Zero Trust security is the concept, methodology, and threat model that assumes no user, system, or service operating within a secured internal environment should be automatically trusted. It put forward that every interaction must be verified when trying to connect to a system before being granted access. This concept uses micro-segmentation, and granular edge controls based on user rights, application access levels, service usage, and relation to the location to determine whether to trust a user, machine, or application seeking to access a specific part of an organization.

Continue reading →

How Was My Website Compromised?

Posted on November 19, 2020 by Danny Jensen | Updated: February 18, 2021

Category: Tutorials | Tags: Audit, Backups, CentOS, Code, Code Analysis, Code Injection, Common Questions, Compliance, Compromise, Compromised Website, Content Security Policy, Cross-Site Scripting, Data Leak, Diagnostics, Directory Transversal, Email, Encryption, Fail2Ban, File Permissions, Firewall, Hacking, HIPAA, Least Privilege, Linux, LUKS, Lynis, Malware, Passphrase, Password, Password Policy, PCI, PCI Compliant, Pen testing, Permissions, Remote Code Execution, Root, Scripts, Security, Security Policy, Security Practices, Server, SFTP, SQL Injection, SSH, SSH Keys, SSL, Tool, Ubuntu, VPN, Vulnerability

Reading Time: 8 minutes

In this tutorial, we will look at several methods that are used to compromise a website. In today's world, websites use multiple procedures that represent the core functions of a modern business. Whether you have an eCommerce site or a business card site, a website is essential for driving business growth. We can safely state that a website is a unique image of your respective business.

Continue reading →

How to Install and Configure OpenSSH on Windows Server 2019

Posted on July 10, 2020 by Jeff VanDellen

Category: Tutorials | Tags: Administrator, Encryption, Firewall, OpenSSH, OpenSSH-Server, Passphrase, Password, Password Policy, Permissions, Root, Security, Security Policy, Security Practices, selinux, Server, SFTP, SSH, SSH Keys, SSH Ports, SSL, Windows, Windows 10, Windows Server

Reading Time: 6 minutes

What is OpenSSH?

OpenSSH is an open-source utility developed by The OpenBSD Project. SSH stands for "Secure SHell." This service encrypts traffic on both ends, eliminating security risks from hackers or eavesdroppers. It can be used for remote operations like file transfers and offers key-based passwordless authentication. In this tutorial, we will demonstrate how to harness the power of SSH's on your Windows server to send basic remote commands and transfer files using password authentication.

Continue reading →

Newer posts →